Closed ctengel closed 1 year ago
Buckets should have names like category-YYYYMMDD
category
name then essentially maps to bucket
that is provided by the clientPolicy needs to be documented/automated
Biggest question is whether to enable downloads or not etc
Based on the great success of #22 , adding anonymous permissions does not seem to be needed, and quite honestly seems to be an unnecessary risk since in many cases the minio systems may be connected directly to a semi-public network.
Instead, just need to ensure that the OI API has read only credentials to the bucket that can be used to presign URLs as needed. Then, OI itself is really the gatekeeper via #14 authentication.
For the purpose of this issue, automation to create buckets and users with access is all that is needed.
Once automation is tested this may be closed