gitlab-com-seaweedfs/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2024-01-19 02:48:24 +00:00
Code Issues Projects Releases Wiki Activity

Updated Security Overview (markdown)

Chris Lu 2019-02-27 00:48:56 -08:00
parent 68342ec33a
commit 2ce504bb99
1 changed files with 1 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
Security-Overview.md

@ -24,13 +24,7 @@ All gRPC operations can optionally be secured via mutual TLS, by customizing the
# Securing Volume Servers
There are 2 ways to change volume servers:
1. Administrative operations via gRPC
1. File upload, update, and delete operations.
To control administrative operations, mutual TLS can be enabled for all gRPC calls.
To control file upload/update/delete operations, Json Web Token (JWT) is used to authorize access for each file id.
Besides gRPC mentioned above, volume servers can only be changed by file upload, update, and delete operations. Json Web Token (JWT) is used to authorize access for each file id.
## JWT-based access control
To enable JWT-based access control,