0

I'm trying to setup ldap auth for rados gateway, and stuck with configuring ldap secret. Documentation said that i need set param "rgw_ldap_secret" with path to file containing credentials, but how i can put this file into rgw container deployed with ceph orchestrator?

I'm using octopus 15.2.4

Dmitry Yaroslavsky
  • 3
  • 3
  • The configs are not stored in a file anymore (except a minimal ceph.conf) but in the mon store. You set configs with `ceph config set ...`, this should also apply to rgw configs. – eblock Jan 27 '21 at 07:56
  • yes, but question not about "how to set path to file into param", it's about "how to put file with ldap secret into container" =) – Dmitry Yaroslavsky Jan 27 '21 at 08:32
  • You could ask the ceph-users mailing list: https://lists.ceph.io/hyperkitty/list/ceph-users@ceph.io/, usually there's someone who has done that already. – eblock Jan 27 '21 at 10:11
  • When I had to fiddle with containers (an upgraded ceph cluster) I could simply copy a file from the host into the container, have you tried that? – eblock Jan 28 '21 at 08:01
  • File, copied to running container will disappear after container restart, it's not good solution. At now, i edited unit.run script for rgw container to bind file with secret into it. – Dmitry Yaroslavsky Jan 28 '21 at 10:23
  • I agree, it's not a good solution and probably depends on a couple of things, I guess, but it worked in my environment. – eblock Jan 28 '21 at 11:10

1 Answers1

0

This can be done via the options extra_container_args 1.

Example:

rgw_spec.yaml

service_type: rgw
service_id: main
placement:
  hosts: []
  count_per_host: 1
spec:
  rgw_frontend_port: 8080
  rgw_frontend_type: beast
extra_container_args:
  - "-v"
  - "/etc/ceph/bindpassw:/etc/ceph/bindpassw:ro"

Console

ceph orch apply -i rgw_spec.yaml
Alexey Matveev
  • 1