#################################################################################################################
# Create an object store user for access to the s3 endpoint.
#  kubectl create -f object-user.yaml
#################################################################################################################

apiVersion: ceph.rook.io/v1
kind: CephObjectStoreUser
metadata:
  name: {{taskserv.object_user}}
  namespace: {{taskserv.namespace  | default (value="rook-ceph")}} # namespace:cluster
spec:
  store: {{taskserv.object_storename}}
  displayName: "{{taskserv.object_displayname}}"
  # Quotas set on the user
  # quotas:
  #   maxBuckets: 100
  #   maxSize: 10G
  #   maxObjects: 10000
  # Additional permissions given to the user
  # capabilities:
  #   user: "*"
  #   bucket: "*"
  #   metadata: "*"
  #   usage: "*"
  #   zone: "*"
  # If the CephObjectStoreUser is created in a namespace other than the Rook cluster namespace,
  # specify the namespace where the cluster and object store are found.
  # "allowUsersInNamespaces" must include this namespace to enable this feature.
  # clusterNamespace: rook-ceph