1879581 – [RFE] mgr/volumes: get the list of auth IDs that have been granted access to a subvolume using mgr/volumes CLI

Bug 1879581 - [RFE] mgr/volumes: get the list of auth IDs that have been granted access to a subvolume using mgr/volumes CLI

Summary: [RFE] mgr/volumes: get the list of auth IDs that have been granted access to ...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	CephFS
Sub Component:
Version:	4.2
Hardware:	All
OS:	All
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	4.2z3
Assignee:	Kotresh HR
QA Contact:	Yogesh Mane
Docs Contact:	Aron Gunn
URL:
Whiteboard:
Depends On:
Blocks:	1760354 1890121
TreeView+	depends on / blocked

Reported:	2020-09-16 14:44 UTC by Victoria Martinez de la Cruz
Modified:	2021-09-27 18:26 UTC (History)
CC List:	13 users (show)
Fixed In Version:	ceph-14.2.11-196.el8cp, ceph-14.2.11-196.el7cp
Doc Type:	Enhancement
Doc Text:	.The mgr/volumes CLI can now be used to list cephx auth IDs Earlier, `ceph_volume_client` interface was used to list the cephx auth IDs. This interface is now deprecated. With this release, consumers like Manila can use the mgr/volume interface to list the cephx auth IDs that are granted access to the subvolumes. .Syntax ---- ceph fs subvolume authorized_list _VOLUME_NAME_ _SUB_VOLUME_NAME_ [--group_name=_GROUP_NAME_] ----
Clone Of:
Environment:
Last Closed:	2021-09-27 18:26:22 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	44931	None	None	None	2020-09-16 14:44:45 UTC
Ceph Project Bug Tracker	49294	None	None	None	2021-03-01 14:57:38 UTC
Ceph Project Bug Tracker	49374	None	None	None	2021-03-01 14:54:55 UTC
Red Hat Issue Tracker	RHCEPH-861	None	None	None	2021-08-23 11:25:54 UTC
Red Hat Product Errata	RHBA-2021:3670	None	None	None	2021-09-27 18:26:41 UTC

Description Victoria Martinez de la Cruz 2020-09-16 14:44:46 UTC

Some cephfs users need the list of auth IDs that have been granted access to a share/subvolume. An example of this is openstack manila, see https://github.com/openstack/manila/blob/stable/train/manila/share/drivers/cephfs/driver.py#L456

The ceph_volume_client's get_authorized_ids() provides this functionality. https://github.com/ceph/ceph/blob/octopus/src/pybind/ceph_volume_client.py#L1308
The ceph_volume_client stores the auth IDs that have been given access to a subvolume in special metadata files, and fetches the list of auth IDs when requested. mgr/volumes needs to provide the same functionality. It needs to store and fetch auth IDs in the same special metadata files used by the ceph_volume_client.

Comment 2 Hemanth Kumar 2020-10-06 09:28:56 UTC

Do we have any update on this? Can we expect the fix to be part of 4.2 ?

Comment 14 Patrick Donnelly 2021-08-23 23:47:08 UTC

POST once merged.

Comment 25 errata-xmlrpc 2021-09-27 18:26:22 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 4.2 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:3670

Note You need to log in before you can comment on or make changes to this bug.