s3/create-user.sh hinzugefügt

2026-03-21 13:24:42 +00:00
parent cce0270c0d
commit a6ed4540d6
1 changed files with 52 additions and 0 deletions
--- a/s3/create-user.sh
+++ b/s3/create-user.sh
@@ -0,0 +1,52 @@
+#!/bin/bash
+
+USERNAME=$1
+PASSWORD=$2
+TARGET="objects"
+
+# Create new prolicy
+cat > ./policy.json << EOF
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Action": [
+        "s3:PutBucketPolicy",
+        "s3:GetBucketPolicy",
+        "s3:DeleteBucketPolicy",
+        "s3:ListAllMyBuckets",
+        "s3:ListBucket"
+      ],
+      "Effect": "Allow",
+      "Resource": [
+        "arn:aws:s3:::$USERNAME"
+      ],
+      "Sid": ""
+    },
+    {
+      "Action": [
+        "s3:AbortMultipartUpload",
+        "s3:DeleteObject",
+        "s3:GetObject",
+        "s3:ListMultipartUploadParts",
+        "s3:PutObject"
+      ],
+      "Effect": "Allow",
+      "Resource": [
+        "arn:aws:s3:::$USERNAME/*"
+      ],
+      "Sid": ""
+    }
+  ]
+}
+EOF
+
+# Add new user if not exist
+if ! mc admin user info "$TARGET" "$USERNAME" > /dev/null 2>&1 ; then
+    mc admin user add "$TARGET" "$USERNAME" "$PASSWORD"
+    mc mb "$TARGET/$USERNAME"
+fi
+
+# Set new policy to new user
+mc admin policy add "$TARGET" "user-$USERNAME" policy.json
+mc admin policy set "$TARGET" "user-$USERNAME" "user=$USERNAME"