Dell DX6012S DX Object Storage Application Guide - Page 70
administrator anticipates needing to override immutability for an object at some point in the future
View all Dell DX6012S manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 70 highlights
a WWW-Authenticate challenge containing the administrative domain named Castor administrator and other required items. If the request includes both the query argument and authorized administrator credentials, it proceeds and the Allow header is ignored. Administrative overrides cannot be used for methods that are never supported for an object, specifically application of update methods like PUT, COPY or APPEND to immutable objects. If an administrator anticipates needing to override immutability for an object at some point in the future, he/she should consider writing the object as an anchor stream with an Allow header that does not include any of the update methods. This prevents normal users from being able to modify the object but allows the administrator to update it using an authorized administrative request if needed. All administrative requests are logged along with the user name of the requestor for audit purposes. Note To determine whether a particular SCSP operation succeeds, DX Storage examines the following in order: 1. The admin query argument which, if present, bypasses other authorization methods. 2. The operations allowed by the Allow header. 3. The operations allowed to the user in the authorized realm specified in the CastorAuthorization header. Copyright © 2010 Caringo, Inc. All rights reserved 65 Version 5.0 December 2010