You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
uniformBucketLevelAccess: true is the default from Google, and new organizations even come with a constraint. This should be the default, and does not need to be exposed to the end user.
This will require that we change the way we grant the application service account access to the bucket. Today we create a StorageBucketAccessControl resource where we grant the user OWNER on the bucket. This we can drop, and just grant the SA roles/storage.objectUser instead.
This cleans up the logic in pkg/resourcecreator/google/storagebucket/storagebucket.go
disable soft-delete
Soft-delete is a new setting that come as default. This is not needed, and can be disabled.
softDeletePolicy:
retentionDurationSeconds: 0# 604800 is default (1 week)
The text was updated successfully, but these errors were encountered:
uniform bucket level access
uniformBucketLevelAccess: trueis the default from Google, and new organizations even come with a constraint. This should be the default, and does not need to be exposed to the end user.This will require that we change the way we grant the application service account access to the bucket. Today we create a
StorageBucketAccessControlresource where we grant the userOWNERon the bucket. This we can drop, and just grant the SAroles/storage.objectUserinstead.This cleans up the logic in
pkg/resourcecreator/google/storagebucket/storagebucket.godisable soft-delete
Soft-delete is a new setting that come as default. This is not needed, and can be disabled.
The text was updated successfully, but these errors were encountered: