matrixone
matrixone copied to clipboard
matrixorigin
[Bug]:Load data from aliyun with arn can only success with authority 'AliyunOSSFullAccess' and bucket configuration is * .
Is there an existing issue for the same bug?
- [X] I have checked the existing issues.
Branch Name
mo-cloud dev环境
Commit ID
8.0.30-MatrixOne-v1.1.0
Other Environment Information
- Hardware parameters:
- OS type:
- Others:
连接串:mysql -h freetier-01.cn-hangzhou.cluster.cn-dev.matrixone.tech -P 6001 -u 76ea92e3_0493_4117_a266_1134f2ec2bc1:admin:accountadmin -p
Actual Behavior
描述:当前通过load data with arn的方式必须同时将权限设置成AliyunOSSFullAccess并且bucket的权限设置为*才能load成功.
失败的场景:
情景一:权限配置成下面的场景(以下均为非AliyunOSSFullAccess权限)
情景二:桶的路径成非* load 不成功(配置成*存在安全性问题,需要能指定单独的桶的路径)
Expected Behavior
No response
Steps to Reproduce
1. 创建角色;
2. 创建权限策略;
3. 为角色授权;
4. mysql客户端连接数据库创建数据库和表:
mysql -h freetier-01.cn-hangzhou.cluster.cn-dev.matrixone.tech -P 6001 -u 76ea92e3_0493_4117_a266_1134f2ec2bc1:admin:accountadmin -p
create database test;
use test;
create table test01(col1 char,col2 char);
5. load数据
load data url s3option {"endpoint"='oss-cn-hangzhou.aliyuncs.com',"bucket"='testarn',"filepath"='test.csv',"role_arn"='acs:ram::1011981963396790:role/testarn',"region"='cn-hangzhou',"compression"='auto',"external_id"='abcd1234'} into table test01 fields terminated by ',';
Additional information
No response
