Protect image repository against uploading files with any types
Registered by
hossein zabolzadeh
Why it is possible to add any file with any types to Glance service? In my opinion its better to write an image-type-checking chunk to check the file type used as input parameter in "glance image-create" command.
It's possible to add e.g. profile.png image file to the glance service. Glance is not a file server, and I think this operation needs to be restricted.
Restricting users to add file with any formats to glance, will eliminate ongoing problems, something like a case mentioned in related bugs(https:/
Blueprint information
- Status:
- Not started
- Approver:
- Louis Taylor
- Priority:
- Undefined
- Drafter:
- hossein zabolzadeh
- Direction:
- Needs approval
- Assignee:
- hossein zabolzadeh
- Definition:
- Drafting
- Series goal:
- None
- Implementation:
- Not started
- Milestone target:
- None
- Started by
- Completed by
Related branches
Related bugs
Bug #1376605: Invalid url for glance image upload does not abort, cannot be deleted. | Invalid |
Whiteboard
[Zabolzadeh]:
Writting a type-checking module is neccessary in openstack project. In my opinion, Glance needs to be aware of what is uploaded.
(?)