From mboxrd@z Thu Jan 1 00:00:00 1970 From: Wido den Hollander Subject: Re: Ceph questions regarding auth and return on PUT from radosgw Date: Mon, 11 Jun 2012 14:40:42 +0200 Message-ID: <4FD5E74A.8070903@widodh.nl> References: Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Return-path: Received: from smtp01.mail.pcextreme.nl ([109.72.87.137]:56970 "EHLO smtp01.mail.pcextreme.nl" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1754316Ab2FKMkk (ORCPT ); Mon, 11 Jun 2012 08:40:40 -0400 In-Reply-To: Sender: ceph-devel-owner@vger.kernel.org List-ID: To: John Axel Eriksson Cc: ceph-devel@vger.kernel.org Hi, On 06/11/2012 02:32 PM, John Axel Eriksson wrote: > Is there a point to having auth enabled if I run ceph on an internal > network, only for use with radosgw (i.e the object storage part)? > It seems to complicate the setup unnecessarily and ceph doesn't use > encryption anyway as far as I understand, it's only auth. > If my network is trusted and I know who has access (and I trust them) > - is there a point to complicate the setup with key-based auth? > The RADOS Gateway uses the S3 protocol and that requires authentication and authorization. When creating a bucket/pool and storing objects, it has to be mapped to a users inside the RADOS GW. I don't know what your exact use-case is, but if it's only internal, isn't it a possibility to use RADOS natively? > Also, when PUTting something through radosgw, does ceph/rgw return as > soon as all data has been received or does it return > when it has ensured N replicas? (I've seen quite a delay after all > data has been sent before my PUT returns). I'm using nginx (1.2) by > the way. iirc it returns when all replicas have received and stored the object. Wido > > Thanks! > > John > -- > To unsubscribe from this list: send the line "unsubscribe ceph-devel" in > the body of a message to majordomo@vger.kernel.org > More majordomo info at http://vger.kernel.org/majordomo-info.html