lsd382
July 20, 2023, 8:54pm
1
Hello!
I want to add superuser adm@adm, that have to read and write everybody’ snapshots, policies,etc.
There are acls I made:
ser:adm@adm access:FULL target:type=user,username=@
user:adm@adm access:FULL target:type=content
user:adm@adm access:FULL target:type=policy,policyType=global
user:adm@adm access:FULL target:type=policy,hostname= ,policyType=host
user:adm@adm access:FULL target:type=policy,hostname=,username=
user:adm@adm access:FULL target:type=snapshot,hostname= ,username=
user:@ access:FULL target:type=user,username=OWN_USER@OWN_HOST
user:@ access:APPEND target:type=content
user:@ access:READ target:type=policy,policyType=global
user:@ access:READ target:type=policy,hostname=OWN_HOST,policyType=host
user:@ access:READ target:type=policy,hostname=OWN_HOST,username=OWN_USER
user:@ access:APPEND target:type=snapshot,hostname=OWN_HOST,username=OWN_USER
But when I’m connected to kopia repository server as adm@adm, I only see my snapshots, only my user in ‘kopia server user list’. And see no acl, no policies.
Please help me to understand where am I mistaken?
I have a similar problem. Have you solved ?
lsd382
October 22, 2023, 11:36am
3
Hello, Pasquale, It works for me now:
kopia server acl delete --all --delete
kopia server acl add --user adm@adm --access FULL --target type=user
kopia server acl add --user adm@adm --access FULL --target type=acl
kopia server acl add --user adm@adm --access FULL --target type=content
kopia server acl add --user adm@adm --access FULL --target type=policy,policyType=global
kopia server acl add --user adm@adm --access FULL --target type=policy,policyType=host,hostname=*
kopia server acl add --user adm@adm --access FULL --target type=policy,hostname=,username=
kopia server acl add --user adm@adm --access FULL --target type=snapshot,username=,hostname=
kopia server acl add --user @ --access FULL --target type=user,username=OWN_USER@OWN_HOST
kopia server acl add --user @ --access APPEND --target type=content
kopia server acl add --user @ --access READ --target type=policy,policyType=global
kopia server acl add --user @ --access READ --target type=policy,policyType=host,hostname=OWN_HOST
kopia server acl add --user @ --access READ --target type=policy,hostname=OWN_HOST,username=OWN_USER
kopia server acl add --user @ --access APPEND --target type=snapshot,username=OWN_USER,hostname=OWN_HOST