doc: add release note for new policy actions on replication

author Seena Fallah <seenafallah@gmail.com>

Mon, 24 Feb 2025 15:47:50 +0000 (16:47 +0100)

committer Seena Fallah <seenafallah@gmail.com>

Mon, 28 Apr 2025 16:56:06 +0000 (18:56 +0200)
author Seena Fallah <seenafallah@gmail.com>
Mon, 24 Feb 2025 15:47:50 +0000 (16:47 +0100)
committer Seena Fallah <seenafallah@gmail.com>
Mon, 28 Apr 2025 16:56:06 +0000 (18:56 +0200)
diff --git a/PendingReleaseNotes b/PendingReleaseNotes

index 404d2d7f8cdec4edda8ba446f18c2ebacbcaa923..6b18efc70f1747654e7d275aae49548b246e588d 100644 (file)
--- a/PendingReleaseNotes
+++ b/PendingReleaseNotes
@@ -138,6 +138,13 @@
    allowed.  `rbd trash mv` command now behaves the same way as `rbd rm` in this
    scenario.
  
+* RGW: Replication policies now validate permissions using `s3:ReplicateObject`,
+  `s3:ReplicateDelete`, and `s3:ReplicateTags` for destination buckets. For source
+  buckets, both `s3:GetObjectVersionForReplication` and `s3:GetObject(Version)`
+  are supported. Actions like `s3:GetObjectAcl`, `s3:GetObjectLegalHold`, and
+  `s3:GetObjectRetention` are also considered when fetching the source object.
+  Replication of tags is controlled by the `s3:GetObject(Version)Tagging` permission.
+
  >=19.2.1
  
  * CephFS: Command `fs subvolume create` now allows tagging subvolumes through option
author	Seena Fallah <seenafallah@gmail.com>
	Mon, 24 Feb 2025 15:47:50 +0000 (16:47 +0100)
committer	Seena Fallah <seenafallah@gmail.com>
	Mon, 28 Apr 2025 16:56:06 +0000 (18:56 +0200)