User Configurable RBAC
Registered by
Anthony Young
For essex, RBAC was added to nova, but the implementation is low level, and not readily explainable to users/deployers. As such, for now RBAC will be documented as experimental and subject-to-change. This blueprint adds an intuitive and stable set of RBAC configuration options that are designed for use by deployers. There are a few ways that this can be done:
* Grouping functionality into categories, and providing a smallish set of summary rules.
* Using rules that map to resources/actions (compute:
Some other considerations:
* Ec2-compatibility
* Inter-project consistency
Blueprint information
- Status:
- Complete
- Approver:
- Vish Ishaya
- Priority:
- High
- Drafter:
- None
- Direction:
- Approved
- Assignee:
- Anthony Young
- Definition:
- Obsolete
- Series goal:
- None
- Implementation:
-
Unknown
- Milestone target:
- None
- Started by
- Completed by
- Vish Ishaya
Related branches
Related bugs
Sprints
Whiteboard
(?)
