Skip to content

Commit

Permalink
clarify minimal permissions
Browse files Browse the repository at this point in the history
  • Loading branch information
@yonipeleg33
yonipeleg33 committed Oct 29, 2024
1 parent 9e8a43b commit 62e38ea
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions docs/howto/garbage-collection/standalone-gc.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,7 @@ docker pull treeverse/lakefs-sgc:<tag>

### Permissions
To run `lakefs-sgc`, you'll need AWS and LakeFS users, with the following permissions:

#### AWS
The minimal required permissions on AWS are:
```json
Expand All @@ -87,7 +88,7 @@ The minimal required permissions on AWS are:
"s3:GetObject"
],
"Resource": [
"arn:aws:s3:::<bucket>/*"
"arn:aws:s3:::some-bucket/some/prefix/*"
]
},
{
Expand All @@ -96,7 +97,7 @@ The minimal required permissions on AWS are:
"s3:ListBucket"
],
"Resource": [
"arn:aws:s3:::<bucket>"
"arn:aws:s3:::some-bucket"
]
},
{
Expand All @@ -111,6 +112,7 @@ The minimal required permissions on AWS are:
]
}
```
In this permissions file, the example repository storage namespace is `s3://some-bucket/some/prefix`.

#### LakeFS
The minimal required permissions on LakeFS are:
Expand Down

0 comments on commit 62e38ea

Please sign in to comment.