Details
-
Task
-
Resolution: Unresolved
-
Major
-
None
-
None
-
None
Description
https://docs.couchbase.com/operator/current/helm-couchbase-config.html#backups
UseIAMRole enables backup to fetch EC2 instance metadata. This allows the AWS SDK to use the EC2’s IAM Role for S3 access. UseIAMRole will ignore credentials in s3Secret.
|
- s3Secret (couchbaseclusters.spec.backup.s3Secret ) is deprecated. https://docs.couchbase.com/operator/current/resource/couchbasecluster.html#couchbaseclusters-spec-backup-s3secret.
Replacement is : couchbasebackups.spec.objectStore.secret
https://docs.couchbase.com/operator/current/resource/couchbasebackup.html#couchbasebackups-spec-objectstore-secret - UseIAMRole will ignore credentials in secret, however for AWS the region specified through secret will be used.
ObjStoreSecret must contain two fields, access-key-id, secret-access-key and optionally either region or refresh-token. These correspond to the fields used by cbbackupmgr https://docs.couchbase.com/server/current/backup-restore/cbbackupmgr-backup.html#optional-2.
|
This need to be extended with something like.
In case of AWS S3, with UseIAMRole set to true, a secret with only region specified can be used.
|