doc: fixup #58689 - document SSE-C iam condition key

author dawg <code@dawg.eu>

Wed, 5 Mar 2025 09:12:57 +0000 (10:12 +0100)

committer Zac Dover <zac.dover@proton.me>

Fri, 14 Mar 2025 07:09:49 +0000 (17:09 +1000)
author dawg <code@dawg.eu>
Wed, 5 Mar 2025 09:12:57 +0000 (10:12 +0100)
committer Zac Dover <zac.dover@proton.me>
Fri, 14 Mar 2025 07:09:49 +0000 (17:09 +1000)
diff --git a/doc/radosgw/bucketpolicy.rst b/doc/radosgw/bucketpolicy.rst

index 26a2431603f8c50a1442e2080f8d56963e3094a0..98a408a5acbad88a36c2004152922ff51aad05eb 100644 (file)
--- a/doc/radosgw/bucketpolicy.rst
+++ b/doc/radosgw/bucketpolicy.rst
@@ -179,53 +179,56 @@ Bucket Related Operations
  Object Related Operations
  ~~~~~~~~~~~~~~~~~~~~~~~~~~
  
-+-----------------------------+-----------------------------------------------+-------------------+
-|Permission                   |Condition Keys                                 | Comments          |
-|                             |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|                             |s3:x-amz-acl & s3:x-amz-grant-<perm>           |                   |
-|                             |                                               |                   |
-|                             +-----------------------------------------------+-------------------+
-|                             |s3:x-amz-copy-source                           |                   |
-|                             |                                               |                   |
-|                             +-----------------------------------------------+-------------------+
-|                             |s3:x-amz-server-side-encryption                |                   |
-|                             |                                               |                   |
-|                             +-----------------------------------------------+-------------------+
-|s3:PutObject                 |s3:x-amz-server-side-encryption-aws-kms-key-id |                   |
-|                             |                                               |                   |
-|                             +-----------------------------------------------+-------------------+
-|                             |s3:x-amz-metadata-directive                    |PUT & COPY to      |
-|                             |                                               |overwrite/preserve |
-|                             |                                               |metadata in COPY   |
-|                             |                                               |requests           |
-|                             +-----------------------------------------------+-------------------+
-|                             |s3:RequestObjectTag/<tag-key>                  |                   |
-|                             |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|s3:PutObjectAcl              |s3:x-amz-acl & s3-amz-grant-<perm>             |                   |
-|s3:PutObjectVersionAcl       |                                               |                   |
-|                             +-----------------------------------------------+-------------------+
-|                             |s3:ExistingObjectTag/<tag-key>                 |                   |
-|                             |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|                             |s3:RequestObjectTag/<tag-key>                  |                   |
-|s3:PutObjectTagging &        +-----------------------------------------------+-------------------+
-|s3:PutObjectVersionTagging   |s3:ExistingObjectTag/<tag-key>                 |                   |
-|                             |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|s3:GetObject &               |s3:ExistingObjectTag/<tag-key>                 |                   |
-|s3:GetObjectVersion          |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|s3:GetObjectAcl &            |s3:ExistingObjectTag/<tag-key>                 |                   |
-|s3:GetObjectVersionAcl       |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|s3:GetObjectTagging &        |s3:ExistingObjectTag/<tag-key>                 |                   |
-|s3:GetObjectVersionTagging   |                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
-|s3:DeleteObjectTagging &     |s3:ExistingObjectTag/<tag-key>                 |                   |
-|s3:DeleteObjectVersionTagging|                                               |                   |
-+-----------------------------+-----------------------------------------------+-------------------+
++-----------------------------+---------------------------------------------------+-------------------+
+|Permission                   |Condition Keys                                     | Comments          |
+|                             |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|                             |s3:x-amz-acl & s3:x-amz-grant-<perm>               |                   |
+|                             |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:x-amz-copy-source                               |                   |
+|                             |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:x-amz-server-side-encryption                    |                   |
+|                             |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|s3:PutObject                 |s3:x-amz-server-side-encryption-aws-kms-key-id     |                   |
+|                             |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:x-amz-server-side-encryption-customer-algorithm |                   |
+|                             |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:x-amz-metadata-directive                        |PUT & COPY to      |
+|                             |                                                   |overwrite/preserve |
+|                             |                                                   |metadata in COPY   |
+|                             |                                                   |requests           |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:RequestObjectTag/<tag-key>                      |                   |
+|                             |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|s3:PutObjectAcl              |s3:x-amz-acl & s3-amz-grant-<perm>                 |                   |
+|s3:PutObjectVersionAcl       |                                                   |                   |
+|                             +---------------------------------------------------+-------------------+
+|                             |s3:ExistingObjectTag/<tag-key>                     |                   |
+|                             |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|                             |s3:RequestObjectTag/<tag-key>                      |                   |
+|s3:PutObjectTagging &        +---------------------------------------------------+-------------------+
+|s3:PutObjectVersionTagging   |s3:ExistingObjectTag/<tag-key>                     |                   |
+|                             |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|s3:GetObject &               |s3:ExistingObjectTag/<tag-key>                     |                   |
+|s3:GetObjectVersion          |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|s3:GetObjectAcl &            |s3:ExistingObjectTag/<tag-key>                     |                   |
+|s3:GetObjectVersionAcl       |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|s3:GetObjectTagging &        |s3:ExistingObjectTag/<tag-key>                     |                   |
+|s3:GetObjectVersionTagging   |                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
+|s3:DeleteObjectTagging &     |s3:ExistingObjectTag/<tag-key>                     |                   |
+|s3:DeleteObjectVersionTagging|                                                   |                   |
++-----------------------------+---------------------------------------------------+-------------------+
  
  
  More may be supported soon as we integrate with the recently rewritten
author	dawg <code@dawg.eu>
	Wed, 5 Mar 2025 09:12:57 +0000 (10:12 +0100)
committer	Zac Dover <zac.dover@proton.me>
	Fri, 14 Mar 2025 07:09:49 +0000 (17:09 +1000)