...
| Code Block | ||
|---|---|---|
| ||
# Create a pool with access-control via a access-list test file $ dmg pool create --size=1G --acl-file=/tmp/acl_test.txt Creating DAOS pool with automatic storage allocation: 1.0 GB NVMe + 6.00% SCM Pool created with 100.00% SCM/NVMe ratio ----------------------------------------- UUID : 4533f724-7234-4c70-946c-b7a53d7d0ddf Service Ranks : 0 Storage Ranks : 0 Total Size : 1.0 GB SCM : 1.0 GB (1.0 GB / rank) NVMe : 0 B (0 B / rank) # Example of access entries on /tmp/acl_test.txt # pool OWNER: read-write permission # pool owner GROUP: read-write permission # test_user1: write-only permission # test_user2: read-only permission # test_group1: write-only permission # test_group2: read-only permission # EVERYONE else: no permission A::OWNER@:rw A:G:GROUP@:rw A::test_user1@:w A::test_user2@:r A:G:test_group1@:w A:G:test_group2@:r A::EVERYONE@: # Get pool security acl $ dmg pool get-acl --pool=$DAOS_POOL # Entries: A::OWNER@:rw A::test_user1@:w A::test_user2@:r A:G:GROUP@:rw A:G:test_group1@:w A:G:test_group2@:r A::EVERYONE@: # Update pool access entry for the existing test_group1 to no-permission dmg pool update-acl -e A:G:test_group1@: --pool=$DAOS_POOL # Update pool access entry for a new user test_user3 with rw permission dmg pool update-acl -e A::test_user3@:rw --pool=$DAOS_POOL # Get pool security acl after update-acl $ dmg pool get-acl --pool=$DAOS_POOL # Entries: A::OWNER@:rw A::test_user1@:w A::test_user2@:r A::test_user3@:rw A:G:GROUP@:rw A:G:test_group1@: A:G:test_group2@:r A::EVERYONE@: |
...