For S3 purposes, each Hedvig user is treated as an independent user. Permissions and access control are done through S3 APIs and the AWS CLI.
Groups for Hedvig S3 Service users are not yet supported.
The particular buckets that are visible to each Hedvig user depend on the tenancy and the user’s role, as set in the Hedvig WebUI. RBAC applies only to this setup with respect to S3, as everything is controlled in the granularity of users for S3 in Hedvig.
To use the AWS CLI, you must add the appropriate Hedvig users and passwords to the AWS credentials file. See Security Token as AWS Secret Access Key.
- For more information about tenants and user roles, see the Hedvig RBAC User Guide.