fa57a09399
docs: document SSE behavior during replication and backup
...
- Server-Side-Encryption.md: Add "Replication and Backup with SSE"
section covering filer.sync (ciphertext passthrough), filer.backup
and filer.replicate (decrypt-then-upload), and KMS config for backup.
- Async-Backup.md: Add SSE section noting automatic decryption.
- Async-Replication-to-Cloud.md: Add SSE note for filer.replicate.
- Filer-Active-Active: Add SSE section noting shared key requirement
and warning about mismatched keys.
2026-04-05 21:49:51 -07:00
b58dee51e6
docs: rename SSE-S3 config to [s3.sse] / WEED_S3_SSE_* everywhere
2026-04-03 12:06:50 -07:00
f38832808f
docs: move SSE-S3 KEK config to security.toml, update all references
2026-04-03 12:04:48 -07:00
cea0117bbd
docs: SSE-S3 no longer auto-generates KEK, add to production checklist
...
- Update Server-Side-Encryption.md: clarify SSE-S3 is disabled when no
KEK is configured (no more auto-generation)
- Update Production-Setup.md: add SSE-S3 encryption at rest section
under S3 API setup
2026-04-03 11:58:31 -07:00
5ea6c4e7f2
docs: add WEED_S3_SSE_KEK and WEED_S3_SSE_KEY with migration guide
2026-04-03 11:31:39 -07:00
177ed21e7a
docs: update WEED_S3_SSE_KEY to use any string instead of hex
2026-04-03 11:25:39 -07:00
a146d38607
docs: document WEED_S3_SSE_KEY env var for SSE-S3 KEK
...
Add KEK configuration section to Server-Side-Encryption.md with
migration instructions. Add SSE-S3 encryption key section to
Environment-Variables.md.
2026-04-03 00:40:11 -07:00
f9907f4326
adjust endpoint in aws CLI
2026-01-29 22:49:54 -08:00
a732d9c1ba
more
2025-09-15 21:19:52 -07:00
15ca722eaa
update for SSE
2025-09-11 11:34:44 -07:00
f234e69c41
support SSE-C SSE-KMS Conditional read and write
2025-08-23 09:08:57 -07:00
Chris Lu