Interim AuthZ service for Nova
Until Keystone is fully functional with AuthZ support, we may need some primitive authZ in Nova. This BP discusses how this may be possible at a low-level.
Description of the proposed implementation is here:
http://
Blueprint information
- Status:
- Complete
- Approver:
- Vish Ishaya
- Priority:
- Essential
- Drafter:
- Nova Auth Team
- Direction:
- Approved
- Assignee:
- Brian Waldon
- Definition:
- Approved
- Series goal:
- Accepted for essex
- Implementation:
- Implemented
- Milestone target:
- 2012.1
- Started by
- Vish Ishaya
- Completed by
- Brian Waldon
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
Adds simple policy engine support
Addressed by: https:/
First Implementation of Policy checking
Addressed by: https:/
Refactors utils.load_
Addressed by: https:/
Add policy checks to Compute.API
Addressed by: https:/
Make authz failures use proper response code
Addressed by: https:/
Add policy checking to nova.network.