mirror of
				https://github.com/minio/minio.git
				synced 2025-10-25 14:21:49 +02:00 
			
		
		
		
	
		
			
				
	
	
		
			105 lines
		
	
	
		
			3.1 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
			
		
		
	
	
			105 lines
		
	
	
		
			3.1 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
| #!/bin/sh
 | |
| 
 | |
| # create buckets with versioning enabled
 | |
| mc mb source/bucket --l    # --l flag enables object locking.If not needed, uncomment the 'mc version enable' commands
 | |
| mc mb dest/bucket  --l 
 | |
| #mc version enable source/bucket
 | |
| #mc version enable dest/bucket
 | |
| 
 | |
| #### Create a replication admin on source alias
 | |
| # create a replication admin user : repladmin
 | |
| mc admin user add source repladmin repladmin123
 | |
| 
 | |
| # create a replication policy for repladmin
 | |
| cat > repladmin-policy-source.json <<EOF
 | |
| {
 | |
|     "Version": "2012-10-17",
 | |
|     "Statement": [
 | |
|     {
 | |
|         "Action": [
 | |
|             "admin:SetBucketTarget",
 | |
|             "admin:GetBucketTarget"
 | |
|         ],
 | |
|         "Effect": "Allow",
 | |
|         "Sid": ""
 | |
|      }, 
 | |
|      {
 | |
|       "Effect": "Allow",
 | |
|       "Action": [
 | |
|        "s3:GetReplicationConfiguration",
 | |
|        "s3:ListBucket",
 | |
|        "s3:ListBucketMultipartUploads",
 | |
|        "s3:GetBucketLocation",
 | |
|        "s3:GetBucketVersioning"
 | |
|       ],
 | |
|       "Resource": [
 | |
|        "arn:aws:s3:::bucket"
 | |
|       ]
 | |
|      }
 | |
|     ]
 | |
|    }
 | |
| EOF
 | |
| mc admin policy add source repladmin-policy ./repladmin-policy-source.json
 | |
| cat ./repladmin-policy-source.json
 | |
| 
 | |
| #assign this replication policy to repladmin
 | |
| mc admin policy set source repladmin-policy user=repladmin
 | |
| 
 | |
| ### on dest alias
 | |
| # Create a replication user : repluser on dest alias
 | |
| mc admin user add dest repluser repluser123
 | |
| 
 | |
| # create a replication policy for repluser
 | |
| # Remove "s3:GetBucketObjectLockConfiguration" if object locking is not enabled, i.e. bucket was not created with `mc mb --with-lock` option
 | |
| # Remove "s3:ReplicateDelete" if delete marker replication is not required
 | |
| cat > replpolicy.json <<EOF
 | |
| {
 | |
|  "Version": "2012-10-17",
 | |
|  "Statement": [
 | |
|   {
 | |
|    "Effect": "Allow",
 | |
|    "Action": [
 | |
|     "s3:GetReplicationConfiguration",
 | |
|     "s3:ListBucket",
 | |
|     "s3:ListBucketMultipartUploads",
 | |
|     "s3:GetBucketLocation",
 | |
|     "s3:GetBucketVersioning",
 | |
|     "s3:GetBucketObjectLockConfiguration"
 | |
|    ],
 | |
|    "Resource": [
 | |
|     "arn:aws:s3:::bucket"
 | |
|    ]
 | |
|   },
 | |
|   {
 | |
|    "Effect": "Allow",
 | |
|    "Action": [
 | |
|     "s3:GetReplicationConfiguration",
 | |
|     "s3:ReplicateTags",
 | |
|     "s3:AbortMultipartUpload",
 | |
|     "s3:GetObject",
 | |
|     "s3:GetObjectVersion",
 | |
|     "s3:GetObjectVersionTagging",
 | |
|     "s3:PutObject",
 | |
|     "s3:DeleteObject",
 | |
|     "s3:ReplicateObject",
 | |
|     "s3:ReplicateDelete"
 | |
|    ],
 | |
|    "Resource": [
 | |
|     "arn:aws:s3:::bucket/*"
 | |
|    ]
 | |
|   }
 | |
|  ]
 | |
| }
 | |
| EOF
 | |
| mc admin policy add dest replpolicy ./replpolicy.json
 | |
| cat ./replpolicy.json
 | |
| 
 | |
| #assign this replication policy to repluser
 | |
| mc admin policy set dest replpolicy user=repluser
 | |
| 
 | |
| # define remote target for replication from source/bucket -> dest/bucket
 | |
| mc admin bucket remote add repladminAlias/bucket http://repluser:repluser123@localhost:9000/bucket --service replication --region us-east-1
 | |
| 
 | |
| echo "Now, use this ARN to add replication rules using 'mc replicate add' command"
 | |
| # use arn returned by above command to create a replication policy on the source/bucket with `mc replicate add`
 | |
| #mc replicate add source/bucket --priority 1 --remote-bucket bucket --arn arn:minio:replication:us-east-1:21fb52f5857473e2dbdcf62dcac21240861caf0f8301c3d26aad4de7677869c7:bucket --replicate delete-marker,delete |