s3/create-user.sh hinzugefügt

2026-03-21 13:24:42 +00:00
parent cce0270c0d
commit a6ed4540d6
1 changed files with 52 additions and 0 deletions
--- a/s3/create-user.sh
+++ b/s3/create-user.sh
@@ -0,0 +1,52 @@
 #!/bin/bash
 USERNAME=$1
 PASSWORD=$2
 TARGET="objects"
 # Create new prolicy
 cat > ./policy.json << EOF
 {
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "s3:PutBucketPolicy",
        "s3:GetBucketPolicy",
        "s3:DeleteBucketPolicy",
        "s3:ListAllMyBuckets",
        "s3:ListBucket"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::$USERNAME"
      ],
      "Sid": ""
    },
    {
      "Action": [
        "s3:AbortMultipartUpload",
        "s3:DeleteObject",
        "s3:GetObject",
        "s3:ListMultipartUploadParts",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::$USERNAME/*"
      ],
      "Sid": ""
    }
  ]
 }
 EOF
 # Add new user if not exist
 if ! mc admin user info "$TARGET" "$USERNAME" > /dev/null 2>&1 ; then
    mc admin user add "$TARGET" "$USERNAME" "$PASSWORD"
    mc mb "$TARGET/$USERNAME"
 fi
 # Set new policy to new user
 mc admin policy add "$TARGET" "user-$USERNAME" policy.json
 mc admin policy set "$TARGET" "user-$USERNAME" "user=$USERNAME"