Discourse/discourse
Discourse/discourse
0
0
Fork 0
mirror of https://gh.wpcy.net/https://github.com/discourse/discourse.git synced 2026-05-13 23:01:54 +08:00
Code Packages Activity Actions
discourse/lib/tasks
History
Exact
Alan Guo Xiang Tan b02bc707de
DEV: Add setting to tag s3 objects enabling tag based access control policies (#32988) 
This commit introduces a `s3_enable_access_control_tags` site setting
which,
when enabled, adds a `discourse:acl` tag with values `public` or
`private` to
S3 objects created by the application. The presence of the tags on S3
objects
enables bucket administrators to implement tag-based access control
policies, providing an alternative to
object ACLs which AWS now discourages.

The `discourse:acl` tag can be customized via the
`s3_access_control_tag_key ` site setting.
Values for `public` and `private` can also be customized via the
`s3_access_control_tag_public_value` and
`s3_access_control_tag_private_value ` site settings respectively.

### Reviewer Notes

To test it locally, run the following commands in your working discourse
directory:

1. `script/install_minio_binaries.rb`
2. Start a local minio server by running: `bundle exec rails runner
script/local_minio_s3.rb`
3. bundle exec rails runner "SiteSetting.enable_s3_uploads = true"
5. Start your development rails server with the following environment
variables: `DISCOURSE_ENABLE_S3_UPLOADS=true
DISCOURSE_S3_ENABLE_ACCESS_CONTROL_TAGS=true
DISCOURSE_BACKUP_LOCATION=s3`
2025-06-16 13:26:18 +08:00
..
add_topic_to_quotes.rake
admin.rake FEATURE: Add option to hide full name input at signup (#30471) 2024-12-30 22:26:20 +03:00
annotate.rake DEV: add rake task to annotate plugins in clean DB (#29378) 2024-10-24 15:15:59 -03:00
api.rake
assets.rake DEV: Migrate from sprockets to propshaft for assets (#32475) 2025-04-30 08:59:32 +01:00
auto_annotate_models.rake
autospec.rake
avatars.rake DEV: Update to lastest rubocop-discourse 2024-05-27 18:06:14 +02:00
backfill.thor
categories.rake
cdn.rake
compatibility.rake DEV: Introduce rake task to validate discourse-compatibility file (#26158) 2024-03-13 13:57:41 +00:00
db.rake DEV: Fixup db:reset (#31242) 2025-02-20 12:32:45 +00:00
destroy.rake DEV: Add rake task to bulk delete posts (#31642) 2025-03-05 09:31:23 +08:00
dev.rake
docker.rake DEV: Remove extraneous rubocop arguments (#31596) 2025-03-04 01:28:26 +01:00
documentation.rake DEV: Remove unmaintained tidy-jsdoc dependency (#25110) 2024-01-03 10:30:54 +00:00
emails.rake DEV: Update to lastest rubocop-discourse 2024-05-27 18:06:14 +02:00
export.rake
groups.rake
hashtags.rake
i18n.rake
images.rake
import.rake DEV: Import likes into user_actions table (#32921) 2025-05-27 22:08:51 +02:00
incoming_emails.rake
javascript.rake FEATURE: Add description to invites (#33207) 2025-06-16 11:31:07 +08:00
list_email_templates_strings.rake FIX: Add new/missing email templates to the email templates editor (#28075) 2024-07-30 00:27:41 +03:00
log.rake
maxminddb.rake DEV: Bump rubocop_discourse (#29608) 2024-11-06 06:27:49 +08:00
plugin.rake DEV: Fix Lint/ShadowingOuterLocalVariable (#32036) 2025-03-27 13:50:24 +01:00
populate.rake DEV: Add reviewables:populate rake task (#30540) 2025-01-03 10:05:04 +08:00
populate.thor
posts.rake UX: Add a rake task to monitor progress for long rebakes (#27517) 2024-07-03 07:52:47 +10:00
profile.rake DEV: Fix benchmark script 2024-11-20 14:36:44 +01:00
qunit.rake DEV: Run theme tests in random order (#28841) 2024-09-11 10:45:12 +02:00
redis.rake
release_note.rake DEV: Bump rubocop_discourse (#29608) 2024-11-06 06:27:49 +08:00
reviewables.rake DEV: Add reviewables:mass-handle rake task (#30658) 2025-01-10 19:22:43 +03:00
revisions.rake
rspec.rake
s3.rake DEV: Add setting to tag s3 objects enabling tag based access control policies (#32988) 2025-06-16 13:26:18 +08:00
scheduler.rake FEATURE: call hub API to update Discourse discover enrollment. (#25634) 2024-02-23 11:42:28 +05:30
search.rake
site.rake
site_settings.rake DEV: Revert the addition of keywords for all site settings. (#30755) 2025-01-14 13:34:04 +11:00
smoke_test.rake DEV: Switch to pnpm for JS dependencies (#28671) 2024-09-03 10:51:07 +01:00
svg_icons.rake DEV: Switch to pnpm for JS dependencies (#28671) 2024-09-03 10:51:07 +01:00
svg_sprites.rake
tags.rake
themes.rake PERF: Optimize themes:update task (#29290) 2024-10-21 12:36:40 +01:00
topics.rake
turbo.rake
typepad.thor
uploads.rake DEV: Add setting to tag s3 objects enabling tag based access control policies (#32988) 2025-06-16 13:26:18 +08:00
users.rake DEV: update rake task to disable 2FA for a user (#29052) 2024-10-16 09:11:29 +11:00
version_bump.rake DEV: Update to lastest rubocop-discourse 2024-05-27 18:06:14 +02:00