https://lakefs.io/ logo
Join SlackCommunities
Powered by
Is there any guidance on setting up LakeFS to work...
# help
e
Is there any guidance on setting up LakeFS to work with Wasabi? I've seen folks say they've done so successfully, but I'm curious about the specific steps they followed. I also saw this related Issue (now closed)
For example, what buckets settings were selected on creation:
j
Hi @Eric Maynard You should keep bucket versioning disabled, and use Wasabi’s S3 compatible endpoint as the 
blockstore.s3.endpoint
in lakeFS’s configurations.
gratitude thank you 1
e
For the policy permissions required by LakeFS, would the policy boilerplate below work (replacing Resources as appropriate), or is one of the boilerplate Wasabi built-in policies recommended?
Copy code
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "s3:GetObject",
        "s3:PutObject",
        "s3:DeleteObject",
        "s3:ListBucket"
      ],
      "Resource": [
        "arn:aws:s3:::<bucket-name-1>/*",
        "arn:aws:s3:::<bucket-name-2>/*"
      ]
    }
  ]
}
j
You can review the permissions here
👍 1
e
Wasabi only supports Identity-based policies, so I have modified the policy to the definition below (replacing BUCKET/BUCKET_NAME_AND_PREFIX):
Copy code
{
  "Id": "lakeFSPolicy",
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "lakeFSObjects",
      "Action": [
        "s3:GetObject",
        "s3:PutObject",
        "s3:AbortMultipartUpload",
        "s3:ListMultipartUploadParts"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::[BUCKET_NAME_AND_PREFIX]/*"
      ]
    },
    {
      "Sid": "lakeFSBucket",
      "Action": [
        "s3:ListBucket",
        "s3:GetBucketLocation",
        "s3:ListBucketMultipartUploads"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::[BUCKET]"
      ]
    }
  ]
}
👍 1
I had been intending to test this configuration via the free trial (lakeFS cloud) account. Is this possible? I ask because I chose AWS as the cloud vendor, but I get an error when providing my Access Key/Secret. I'm assuming this is because there isn't a way to configure the blockstore.s3.endpoint in the trial account?
j
lakeFS Cloud works either with AWS or Azure. If you want to test in on your on object storage, you can use the open source and follow these steps, but instead of MinIO, use the Wasabi endpoint.
👍 1
Open in Slack
PreviousNext
Powered by