Minio jẹ rọrun, iyara, AWS S3 itaja ohun ibaramu. A ṣe apẹrẹ Minio lati gbalejo data ti a ko ṣeto gẹgẹbi awọn fọto, awọn fidio, awọn faili log, awọn afẹyinti. minio tun ṣe atilẹyin ipo pinpin, eyiti o pese agbara lati so awọn disiki pupọ pọ si olupin ibi ipamọ ohun kan, pẹlu awọn ti o wa lori awọn ero oriṣiriṣi.
Idi ti ifiweranṣẹ yii ni lati tunto minio ki olumulo kọọkan le ṣiṣẹ pẹlu garawa tirẹ nikan.
Ni gbogbogbo, Minio dara fun awọn ọran wọnyi:
- ibi ipamọ ti kii ṣe atunṣe lori oke ti eto faili ti o gbẹkẹle pẹlu wiwọle nipasẹ S3 (ibi ipamọ kekere ati alabọde ti gbalejo lori NAS ati SAN);
- ibi ipamọ ti kii ṣe atunṣe lori oke ti eto faili ti ko ni igbẹkẹle pẹlu wiwọle S3 (fun idagbasoke ati idanwo);
- ibi ipamọ pẹlu ẹda lori ẹgbẹ kekere ti awọn olupin ni agbeko kan pẹlu iraye si nipasẹ ilana S3 (ibi ipamọ ikuna pẹlu agbegbe ikuna ti o dọgba si agbeko).
Lori awọn eto RedHat a so ibi ipamọ Minio laigba aṣẹ.
yum -y install yum-plugin-copr
yum copr enable -y lkiesow/minio
yum install -y minio minio-mc
Ṣe ipilẹṣẹ ki o ṣafikun si MINIO_ACCESS_KEY ati MINIO_SECRET_KEY ni /etc/minio/minio.conf.
# Custom username or access key of minimum 3 characters in length.
MINIO_ACCESS_KEY=
# Custom password or secret key of minimum 8 characters in length.
MINIO_SECRET_KEY=
Ti o ko ba lo nginx ṣaaju Minio, lẹhinna o nilo lati yipada.
--address 127.0.0.1:9000
on
--address 0.0.0.0:9000
Jẹ ká lọlẹ Minio.
systemctl start minio
A ṣẹda asopọ kan si Minio ti a npe ni myminio.
minio-mc config host add myminio http://localhost:9000 MINIO_ACCESS_KEY
MINIO_SECRET_KEY
Ṣẹda garawa olumulo1bucket.
minio-mc mb myminio/user1bucket
Ṣẹda garawa olumulo2bucket.
minio-mc mb myminio/user2bucket
Ṣẹda faili eto imulo user1-policy.json.
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"s3:PutBucketPolicy",
"s3:GetBucketPolicy",
"s3:DeleteBucketPolicy",
"s3:ListAllMyBuckets",
"s3:ListBucket"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::user1bucket"
],
"Sid": ""
},
{
"Action": [
"s3:AbortMultipartUpload",
"s3:DeleteObject",
"s3:GetObject",
"s3:ListMultipartUploadParts",
"s3:PutObject"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::user1bucket/*"
],
"Sid": ""
}
]
}
Ṣẹda faili eto imulo user2-policy.json.
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"s3:PutBucketPolicy",
"s3:GetBucketPolicy",
"s3:DeleteBucketPolicy",
"s3:ListAllMyBuckets",
"s3:ListBucket"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::user2bucket"
],
"Sid": ""
},
{
"Action": [
"s3:AbortMultipartUpload",
"s3:DeleteObject",
"s3:GetObject",
"s3:ListMultipartUploadParts",
"s3:PutObject"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::user2bucket/*"
],
"Sid": ""
}
]
}
Ṣẹda olumulo olumulo1 pẹlu idanwo ọrọ igbaniwọle12345.
minio-mc admin user add myminio user1 test12345
Ṣẹda olumulo olumulo2 pẹlu idanwo ọrọ igbaniwọle54321.
minio-mc admin user add myminio user2 test54321
A ṣẹda eto imulo kan ni Minio ti a pe ni olumulo1-eto lati faili user1-policy.json.
minio-mc admin policy add myminio user1-policy user1-policy.json
A ṣẹda eto imulo kan ni Minio ti a pe ni olumulo2-eto lati faili user2-policy.json.
minio-mc admin policy add myminio user2-policy user2-policy.json
Waye eto imulo olumulo1 si olumulo olumulo1.
minio-mc admin policy set myminio user1-policy user=user1
Waye eto imulo olumulo2 si olumulo olumulo2.
minio-mc admin policy set myminio user2-policy user=user2
Ṣiṣayẹwo asopọ ti awọn eto imulo si awọn olumulo
minio-mc admin user list myminio
Ṣiṣayẹwo asopọ ti awọn eto imulo si awọn olumulo yoo dabi nkan bi eyi
enabled user1 user1-policy
enabled user2 user2-policy
Fun asọye, lọ nipasẹ ẹrọ aṣawakiri si adirẹsi naa
A rii pe a sopọ si Minio labẹ MINIO_ACCESS_KEY=olumulo1. Garawa olumulo1bucket wa fun wa.
Kii yoo ṣee ṣe lati ṣẹda garawa kan, nitori ko si Iṣe ti o baamu ninu eto imulo naa.
Jẹ ki a ṣẹda faili kan ninu garawa user1bucket.
Jẹ ki a sopọ si Minio labẹ MINIO_ACCESS_KEY=user2. Garawa olumulo2bucket wa fun wa.
Ati pe a ko rii boya olumulo1bucket tabi awọn faili lati olumulo1bucket.
Ṣẹda iwiregbe Telegram ni lilo Minio
orisun: www.habr.com