我将使用 Ceph(rook-ceph V15.2.5)STS 服务创建临时凭证以通过 Java 访问 ceph 存储桶资源,并按照以下示例步骤操作:https ://docs.ceph.com/en/latest/ radosgw/STS/ . 当调用assumeRole 来获取凭据时,它的结果为400。从rgw 日志中:
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 10 moving my-store.rgw.meta+roles+roles.5c5d7e0e-7492-4b53-8aa2-cd0a316f88af to cache LRU end
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role verifying op params
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role pre-executing
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role executing
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 0 ERROR: Invalid secret key
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role completing
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role op status=-22
debug 2020-12-23T02:57:26.656+0000 7f8fd8dd4700 2 req 451 0.003000119s sts:assume_role http status=400
出现“无效的密钥”错误。这是否意味着 rgw sts 密钥无效?
我已经在 rgw pod 下设置了 sts 键的 16 个字符:/etc/ceph/ceph.conf
[client.radosgw.gateway]
rgw sts key = "abcdefghijklmnop"
rgw s3 auth use sts = true
有人知道如何解决这个问题吗?谢谢