marco/plugin-barman-cloud
1
0
Fork 0
mirror of https://github.com/cloudnative-pg/plugin-barman-cloud.git synced 2026-03-09 12:12:21 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Compare commits

base: marco:cc5016dbefdc3ac612637ff413bc95043977b314
Branches Tags
marco:main
marco:renovate/pip-compile-refresh
marco:renovate/golangci-golangci-lint-2.x
marco:release-please--branches--main
marco:dev/go-version-from-gomod
marco:renovate/setuptools-82.x
marco:dev/777
marco:dev/reduce-e2e-test-verbosity
marco:dev/385
marco:snyk-fix-6f890911d063843b8cacf57cf3c8ee75
marco:dev/pprof_server
marco:dev/389
marco:release-please--branches--dev/release-please
marco:v0.11.0
marco:v0.10.0
marco:v0.9.0
marco:v0.8.0
marco:v0.7.0
marco:v0.6.0
marco:v0.5.0
marco:v0.4.1
marco:v0.4.0
marco:v0.3.0
marco:v0.2.0
marco:v0.1.0
...
compare: marco:ed2e1ec7590e35986d8a409f1b047b831fd10fa9
Branches Tags
marco:renovate/pip-compile-refresh
marco:renovate/golangci-golangci-lint-2.x
marco:release-please--branches--main
marco:dev/go-version-from-gomod
marco:renovate/setuptools-82.x
marco:main
marco:dev/777
marco:dev/reduce-e2e-test-verbosity
marco:dev/385
marco:snyk-fix-6f890911d063843b8cacf57cf3c8ee75
marco:dev/pprof_server
marco:dev/389
marco:release-please--branches--dev/release-please
marco:v0.11.0
marco:v0.10.0
marco:v0.9.0
marco:v0.8.0
marco:v0.7.0
marco:v0.6.0
marco:v0.5.0
marco:v0.4.1
marco:v0.4.0
marco:v0.3.0
marco:v0.2.0
marco:v0.1.0

4 Commits
cc5016dbef ... ed2e1ec759

Author SHA1 Message Date
Andreas Lindhé
ed2e1ec759
Merge 313b5cc202 into f12c978732 2026-03-04 16:22:40 +01:00
Andreas Lindhé
313b5cc202 Add permissions for Multipart uploads 
Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>
 2026-01-30 15:44:11 +01:00
Andreas Lindhé
81efbc50ff Trim AbortMultipartUpload and CreateBucket from the list 
Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>
 2026-01-30 15:44:11 +01:00
Andreas Lindhé
9383cf828b Document required S3 bucket policy 
Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>
 2026-01-30 15:44:09 +01:00
1 changed files with 42 additions and 0 deletions
Show Stats Expand all files Collapse all files

42
web/docs/object_stores.md
View File

@ -129,6 +129,48 @@ These strategies help you safeguard backups without requiring broad delete
permissions, ensuring both security and compliance with minimal operational permissions, ensuring both security and compliance with minimal operational
overhead. overhead.
### S3 Lifecycle Policy
Barman Cloud requires the following permissions in the S3 bucket:
- [`s3:AbortMultipartUpload`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_AbortMultipartUpload.html)
- [`s3:DeleteObject`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html)
- [`s3:GetObject`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html)
- [`s3:ListBucketMultipartUploads`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListMultipartUploads.html)
- [`s3:ListBucket`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListBuckets.html)
- [`s3:ListMultipartUploadParts`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListParts.html)
- [`s3:PutObject`](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html)
Here's an example of what such a bucket policy may look like:
```json
{
"Statement": [
{
"Action": [
"s3:AbortMultipartUpload",
"s3:DeleteObject",
"s3:GetObject",
"s3:ListBucket",
"s3:ListBucketMultipartUploads",
"s3:ListMultipartUploadParts",
"s3:PutObject"
],
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::123456789012:user/MaryMajor"
},
"Resource": [
"arn:aws:s3:::amzn-s3-demo-bucket1",
"arn:aws:s3:::amzn-s3-demo-bucket1/*"
],
"Sid": "statement1",
}
],
"Version":"2012-10-17"
}
```
### S3-Compatible Storage Providers ### S3-Compatible Storage Providers
You can use S3-compatible services like **MinIO**, **Linode (Akamai) Object Storage**, You can use S3-compatible services like **MinIO**, **Linode (Akamai) Object Storage**,