A Policy Administration Service for Openstack
Registered by
Ioram Schechtman Sette
This document describes a model of a policy administrative point (PAP) service for Openstack clouds. The service could be a separate stand alone OpenStack service, or it could be integrated into Keystone. The PAP service will be responsible for keeping and updating authorisation policies, which are currently spread over the Openstack services (Nova, Cinder, Glance etc.).
Blueprint information
- Status:
- Complete
- Approver:
- None
- Priority:
- Undefined
- Drafter:
- Ioram Schechtman Sette
- Direction:
- Needs approval
- Assignee:
- None
- Definition:
- Superseded
- Series goal:
- None
- Implementation:
- Unknown
- Milestone target:
- None
- Started by
- Completed by
- Steve Martinelli
Whiteboard
What is needed beyond the policy API? I assume rule level management, and the ability to compose new policies out of existing ones?
(stevemar) 16-02-02: marking this as superseded by dynamic-
(?)