Page MenuHomePhabricator

Create a read-only swift identity for backup taking
Open, MediumPublic

Description

Tools created to communicate with swift work well using mediawiki credentials. However, it is dangerous to reuse mw credenctials for backup taking, as a bug on the software could lead to data loss.

Ideally we would use:

  • An account with the same "read" (download, list, stat) privileges on the mediawiki containers
  • Doesn't have any write/drop/upload privileges on existing containers
  • Cannot create new containers

Event Timeline

jcrespo created this task.Dec 1 2020, 12:02 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 1 2020, 12:02 PM

^@fgiunchedi this is the task I told you about (pinging on comment because sometimes notifications cannot be seen on creation).

(braindumping) we had a similar case in the past (namely adding an account to mw containers), i.e. thumbor. Steps off the top of my head:

  1. create the account and credentials
  2. add said account name to mw scripts that manage filebackend containers
  3. backfill permissions

Of course, I hadn't remembered that it should keep working for newly wikis created. Thanks for pointing that. I will have a look at thumbor and try to learn what they did. Will ask for your review on any patch.

jcrespo claimed this task.Dec 2 2020, 10:24 AM
jcrespo triaged this task as Medium priority.

Relevant ticket: T169144 and children.