Dear Ceph Experts, is it possible to define a Ceph user/key with privileges that allow for read-only CephFS access but do not allow write or other modifications to the Ceph cluster?
I would like to export a sub-tree of our CephFS via HTTPS. Alas, web-servers are inviting targets, so in the (hopefully unlikely) event that the server is hacked, I want to protected the Ceph cluster from file modification/deletion and other possible nasty things. The alternative would be to put an NFS- or SSHFS-proxy between Ceph and the web-server. But I'd like to avoid the additional complication if possible. Cheers and thanks, Oliver _______________________________________________ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
