Glance for Public Clouds

Registered by Iccha Sethi on 2013-04-08

Currently Glance is exposed to users through Nova; this is becoming a problem because new Glance features require a Nova extension. It would be better to have Glance as a first-class member of the OpenStack ecosystem. But in order for this to happen, we (as in OpenStack cloud providers) would need at least:
- more robust user roles to allow per-user:
 - quotas
 - (anything else?)
- protected image properties
- image-related restrictions
 - e.g., there may be contractual reasons why you wouldn't want to allow download of specific images based not on the user, but on the image itself; might be the case for other actions)
- other API changes from increased load
Protected properties is scheduled for Havana; blueprint but no details yet.
There are currently blueprints for rate limits, but an alternative approach would be to think that rate limiting should be done in front of Glance by Repose or a similar system that understands Keystone.

Blueprint information

Status:
Not started
Approver:
None
Priority:
Undefined
Drafter:
None
Direction:
Needs approval
Assignee:
None
Definition:
New
Series goal:
None
Implementation:
Unknown
Milestone target:
None

Related branches

Sprints

Whiteboard

<flaper87>
What do you think about splitting this into multiple blueprints and add them as dependencies? Some of the tasks already have a blueprint.
</flaper87>

Is there any more work to be done here, or can we mark this as completed?
markwash more-info 2014-02-15
markwash abandoned 2014-03-03

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.