From 29.05.2024 onwards it will become possible to integrate external storages within Datashare. This option is available for group drives (NFS; CIFS) and S3 object storage provided by the ZIH.
The request for integrating an external storage into Datashare must be submitted to the Service Desk as a ticket.
A self owned LDAP person group must be synchronized with Datashare. Its unique identifier (starting with "tud-") must be stated in the application.
That LDAP group will be defined as the target for the external storage and all assigned members will have access to it's content within Datashare and are granted all rights to its folder structure (e.g. creating new shares).
For the integration of group drives via CIFS, as well as for S3 object storage, corresponding credentials must be stated in the application.
According to the regulations of TUD, it is strictly forbidden to pass on personal access data. Therefore, a corresponding functional login must be prepared in advance.
Concerning NFS drives, special precautions must be taken so that Datashare can access the storage. More details are provided in the following sections.
For the integration of S3 buckets, please also provide the following information:
- Bucket name
- Access key
- Secret key
Due to the aforementioned regulations of TUD, no personal buckets may ever be processed. The access data (access key and secret key) must therefore be linked to a functional login.
For the integration of group drives via CIFS, please also provide the following information:
- Name of group drive
- Address of group drive
- CIFS Credentials
- Folder path (optional)
The administrator of the group drive must prepare a corresponding function login for the CIFS credentials (user name + password).
For the integration of group drives via NFS, please also provide the following information:
- Name of group drive
- Address of group drive
- Folder path (optional)
The administrators of the group drive must also take these precautions:
1.) In the firewall settings of the group drive, either add the entire ZIH network 172.26.64.0/24 or each of the Datashare web servers individually:
172.26.64.20/32 172.26.64.29/32 172.26.64.30/32 172.26.64.31/32 172.26.64.32/32 172.26.64.35/32
2.) Due to the architecture, access to NFS resources is based on UNIX permissions. Datashare will access the storage with the UID 33 (www-data).
The owner of the group drive must ensure that permissions for the folder path are set accordingly. UID 33 must be allowed to read and write.