From f847ed2333e40cb42476515e0cac7c66dd0ed28b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Antoine=20Beaupr=C3=A9?= <anarcat@debian.org>
Date: Thu, 29 Feb 2024 12:27:31 -0500
Subject: [PATCH] mention svcaccount policy

---
 service/object-storage.md | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/service/object-storage.md b/service/object-storage.md
index c00e6d59..91975bce 100644
--- a/service/object-storage.md
+++ b/service/object-storage.md
@@ -140,8 +140,11 @@ commandline with:
     mc admin user svcacct add admin gitlab
 
 This will display the credentials in plain text on the terminal, so
-watch out for shoulder surfing. The key will inherit the policies
-established above for the user.
+watch out for shoulder surfing.
+
+The key will inherit the policies established above for the user. So
+unless you want the access key have the same access as the user, make
+sure to attach a policy to the access key.
 
 If you have just created a user, you might want to add an alias for
 that user on the server as well, so that future operations can be done
-- 
GitLab