MinIO 客户端 mc 访问与管理:从安装到权限设置的全方位指南
文章目录
本文详细介绍了如何使用 MinIO 客户端
mc 进行访问和管理 MinIO 存储服务。通过从安装
mc 客户端开始,涵盖了如何在不同操作系统中安装 MinIO 客户端,以及如何使用
mc 命令添加存储服务、创建存储桶、查看集群信息等操作。此外,文章还介绍了管理员命令以及如何设置存储桶访问策略,包括自定义、私有、公开、下载和上传权限等。无论是初学者还是管理员,都能通过此指南轻松掌握 MinIO 的访问和管理技巧。
预备课:Docker 安装与配置单机多磁盘 MinIO:高效存储解决方案
一 安装 MinIO 客户端 mc
MinIO Client 命令行工具(mc)
1 macOS 安装
# macOS安装 start
brew install minio/stable/mc
mc --help
# end
2 Linux 安装
# 服务器安装 start
curl https://dl.min.io/client/mc/release/linux-amd64/mc \
--create-dirs \
-o $HOME/minio-binaries/mc
chmod +x $HOME/minio-binaries/mc
export PATH=$PATH:$HOME/minio-binaries/
mc --help
# end
3 Windows 安装
参考文档: mc 的官方文档
二 mc 命令
1 操作示例
# mc Shell 自动补全
mc --autocompletion
# 查看mc版本
mc -version
# 添加MinIO存储服务,ip 是 MinIO 的地址
mc config host add yourminio http://192.168.0.1:9000 admin 12345678
# 在自己部署的minio创建新存储桶
mc mb yourminio/yourbucket
# 列出所有存储桶
mc ls yourminio
# json格式
mc --json ls yourminio
2 admin 操作
# 查看集群信息
mc admin info yourminio
# 显示info命令的详细调试输出
mc admin info --debug yourminio
# MinIO 服务器信息 json格式
mc admin --json info yourminio
# 命令service- 重启和停止所有 MinIO 服务器
mc admin service restart yourminio
# 列出 MinIO 上的所有预设策略
mc admin policy list yourminio
3 常用操作
# 查看所有的别名
mc alias ls
# 创建别名 http://192.168.0.1:9000
mc alias set yourminio http://192.168.0.1:9000 admin 12345678
# 设置访问策略
mc anonymous set-json /Users/your/minio_pcy.json yourminio/yourbucket
# 上传文件
mc cp /Users/your/yourfile.png yourminio/yourbucket
4 更多操作
MinIO 管理员操作,MinIO Client (mc) 提供admin子命令来对 MinIO 部署执行管理任务。
service restart and stop all MinIO servers
update update all MinIO servers
info display MinIO server information
user manage users
group manage groups
policy manage policies defined in the MinIO server
replicate manage MinIO site replication
config manage MinIO server configuration
decommission, decom manage MinIO server pool decommissioning
heal heal disks, buckets and objects on MinIO server
prometheus manages prometheus config
kms perform KMS management operations
bucket manage buckets defined in the MinIO server
tier manage remote tier targets for ILM transition
top provide top like statistics for MinIO
trace show http trace for MinIO server
console show console logs for MinIO server
三 访问策略设置
MinIO 访问策略设置,允许浏览器访问文件、图片和视频。
1 custom权限
匿名访问时只有查询权限(your_pcy.json )
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Action": [
"s3:GetBucketLocation"
],
"Resource": [
"arn:aws:s3:::yourbucket"
]
},
{
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Action": [
"s3:GetObject"
],
"Resource": [
"arn:aws:s3:::yourbucket/*"
]
}
]
}
2 private权限
{
"Statement": [],
"Version": "2012-10-17"
}
3 public权限
{
"Statement": [
{
"Action": [
"s3:GetBucketLocation",
"s3:ListBucket",
"s3:ListBucketMultipartUploads"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket"
]
},
{
"Action": [
"s3:AbortMultipartUpload",
"s3:DeleteObject",
"s3:GetObject",
"s3:ListMultipartUploadParts",
"s3:PutObject"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket/*"
]
}
],
"Version": "2012-10-17"
}
4 download权限
{
"Statement": [
{
"Action": [
"s3:ListBucket",
"s3:GetBucketLocation"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket"
]
},
{
"Action": [
"s3:GetObject"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket/*"
]
}
],
"Version": "2012-10-17"
}
5 upload权限
{
"Statement": [
{
"Action": [
"s3:GetBucketLocation",
"s3:ListBucketMultipartUploads"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket"
]
},
{
"Action": [
"s3:ListMultipartUploadParts",
"s3:PutObject",
"s3:AbortMultipartUpload",
"s3:DeleteObject"
],
"Effect": "Allow",
"Principal": {
"AWS": [
"*"
]
},
"Resource": [
"arn:aws:s3:::yourbucket/*"
]
}
],
"Version": "2012-10-17"
}
扫一扫
1335
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
