Process incomplete bucket creation #434

New issue

Closed

opened 2024-07-18 12:12:47 +00:00 by alexvanin · 2 comments

alexvanin commented 2024-07-18 12:12:47 +00:00

Owner

Copy link

Bucket creation may be interrupted or cancelled during asynchronous container creation. Therefore container will persist, but there would be no policy nor bucket settings for the bucket.

If error happens during policy setup or tree update, then gateway should delete previously created container.

Optionally consider this optimization: on create-new-bucket if container is already exists, gateway may decide to continue setting policy and tree data without returning an error. This should happen only if gateway knows for sure that this is an new container with no settings nor policies.

Bucket creation may be interrupted or cancelled during asynchronous container creation. Therefore container will persist, but there would be no policy nor bucket settings for the bucket. If error happens during policy setup or tree update, then gateway should delete previously created container. Optionally consider this optimization: on `create-new-bucket` if container is already exists, gateway may decide to continue setting policy and tree data without returning an error. This should happen only if gateway knows for sure that this is an new container with no settings nor policies.

dkirillov commented 2024-07-19 06:56:30 +00:00

Member

Copy link

If error happens during policy setup or tree update, then gateway should delete previously created container.

We should take into account that we don't have session token for removing container in AccessBox

> If error happens during policy setup or tree update, then gateway should delete previously created container. We should take into account that we don't have session token for removing container in AccessBox

alexvanin commented 2024-09-24 09:01:46 +00:00

Author

Owner

Copy link

We should take into account that we don't have session token for removing container in AccessBox

While this is true, assume that all tokens are present. Authmate and others token generating services usually grant rights for both bucket creation and deletion.

I suggest at the first step try to delete container anyway. This should cover most of cases.

Then we can modify this code furthermore: if container is already exist, then try to re-apply policies. I will create separate issue for this case.

> We should take into account that we don't have session token for removing container in AccessBox While this is true, assume that all tokens are present. Authmate and others token generating services usually grant rights for both bucket creation and deletion. I suggest at the first step try to delete container anyway. This should cover most of cases. Then we can modify this code furthermore: if container is already exist, then try to re-apply policies. I will create separate issue for this case.

dkirillov was assigned by alexvanin 2024-09-24 09:09:29 +00:00

dkirillov referenced this issue from a pull request that will close it, 2024-09-24 11:46:36 +00:00

[#434] Remove container on failed bucket creation #497

alexvanin referenced this issue from a commit 2024-09-25 07:15:26 +00:00

[#434] Remove container on failed bucket creation

alexvanin closed this issue 2024-09-25 07:15:26 +00:00

alexvanin referenced this issue 2024-09-25 12:26:03 +00:00

Reapply policies if container already created during bucket creation #500

alexvanin added this to the v0.31.0 milestone 2024-11-20 12:04:55 +00:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

support/v0.30

support/v0.29

support/v0.28

support/v0.27

v0.31.0

v0.31.0-rc.6

v0.31.0-rc.5

v0.31.0-rc.4

v0.30.8

v0.31.0-rc.3

v0.30.7

v0.31.0-rc.2

v0.31.0-rc.1

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.30.0-rc.5

v0.29.2

v0.30.0-rc.4

v0.30.0-rc.3

v0.30.0-rc.2

v0.29.1

v0.30.0-rc.1

v0.29.0

v0.28.2

v0.29.0-rc.11

v0.29.0-rc.10

v0.29.0-rc.9

v0.29.0-rc.8

v0.29.0-rc.7

v0.29.0-rc.6

v0.29.0-rc.5

v0.29.0-rc.4

v0.29.0-rc.3

v0.29.0-rc.2

v0.29.0-rc.1

v0.28.1

v0.28.0

v0.28.0-rc.1

v0.27.0

v0.27.0-rc.2

v0.27.0-rc.1

Labels

Clear labels   

P0

Highest

  

P1

High

  

P2

Medium

  

P3

Low

  

good first issue

Good for newcomers

  

Infrastructure

Infrastructure, Automation, CI/CD or DevOps related stuff

  

blocked

The issue or PR is blocked by something

  

bug

Something is not working

  

config

Configuration format update or breaking change

  

discussion

Talking about something in order to reach a decision or to exchange ideas

  

documentation

Documentation related

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

go

Language features adoption

  

help wanted

Extra attention is needed

  

internal

  

invalid

Something is wrong

  

kludge

This is a kludge and we know it

  

observability

Related to metrics, tracing and logs

  

perfomance

Perfomance related

  

question

More information is needed

  

refactoring

Refactoring

  

wontfix

This won't be fixed

No labels

P0

P1

P2

P3

good first issue

Infrastructure

blocked

bug

config

discussion

documentation

duplicate

enhancement

go

help wanted

internal

invalid

kludge

observability

perfomance

question

refactoring

wontfix

Milestone

Clear milestone

No items

No milestone

v0.31.0

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

dkirillov

2 participants

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: TrueCloudLab/frostfs-s3-gw#434

No description provided.