Selectively enable Data Explorer for specific Organizations and Workspaces
evaluating
Y
Yellow sunshine Firefly
Currently there is an option to disable data explorer completely or there is an option to selectively disable auto populating of buckets on specifically specified workspaces.
It would be beneficial if we could have the the option to reverse that: globally turn off auto populating of buckets except for specific workspaces or organizations.
C
Charcoal Mandrill
+1, "me too"
> We'd prefer to manage which cloud storage buckets show up in Data Explorer manually.
This. It is causing seriously huge problems for us that not only is Data Explorer sucking in access to all S3 buckets in the AWS account from the "Data Explorer" page in the Workspace, but it also gives the same global access to all these buckets from within the Run's page when you click in to a specific Tasks and click into the tab showing the files in the S3 workdir for that task ; you are able to freely navigate up from the Run's workdir location and then browse the entire S3 bucket and jump over to other S3 buckets in the AWS account.
Trying to wrangle this from IAM's on the AWS side has been difficult and confusing.
The entire situation could be avoided if we could have just configured Data Explorer on a per-workspace level with only the buckets it should show. Bonus: also configure Data Explorer for the allowed bucket subdirs as well. For example, Allow
s3://my-bucket/seqera/* ; s3://my-bucket/users/*
but block s3://my-bucket/secret-projects/*
. Rob Newman
Rob Newman
Merged in a post:
Enable `TOWER_DATA_EXPLORER_CLOUD_DISABLED_WORKSPACES` for all workspaces
C
Coral reef Lamprey
We'd prefer to manage which cloud storage buckets show up in Data Explorer manually. We also have a large and dynamic number of Workspaces, and would prefer to just disable the automatic cloud fetch globally.
Rob Newman
evaluating
Rob Newman
under review
Rob Newman
Thank you for your feedback. We are currently reviewing the mechanism for how Data Explorer displays cloud storage buckets at both the organization and workspace levels.