key removeacl

Sergei Tikhomirov

Definition

Removes an access control list from a key.

Usage

$ ozone sh key removeacl [-hV] [-s=<store>]
                               -a=<list>
                               <value>
Arguments
Parameter Description

value

A key URI. It can be a full URI (starts with o3://, e.g. o3://hostname:9862/vol1/bucket1/key1) or a short URI (starts with a volume name, e.g. vol1/bucket1/key1). Any missing information is obtained from the configuration files

store

Store type: OZONE or S3

list

A comma-separated list of ACLs. An ACL should match the following pattern: <type>:<entity>:<permissions>, where:

  • <type> is a system entity type like user or group.

  • <entity> is a user or a group the permissions for which you want to control.

  • <permissions> is a sequence of letters that defines the entity’s permissions. The following values are available:

    • r — read the resource data.

    • w — write data to the resource.

    • c — create objects at the resource.

    • d — delete objects at the resource.

    • l — list objects stored at the resource.

    • x — read the access control list of the resource.

    • y — edit the access control list of the resource.

    • a — all of the above.

    • n — no permissions.

-h, --help

Prints out a help manual for this command

-V, --version

Prints out version information and exits

Examples

Removing an ACL from a key:

$ ozone sh key removeacl vol1/bucket1/key1 -a=user:sergei:all

Confirmation of removal:

ACL user:sergei:la[ACCESS] removed successfully.
Found a mistake? Seleсt text and press Ctrl+Enter to report it