Bug 1041514

Summary: [RFE][swift]: Account ACLs support
Product: Red Hat OpenStack Reporter: RHOS Integration <rhos-integ>
Component: RFEsAssignee: RHOS Maint <rhos-maint>
Status: CLOSED UPSTREAM QA Contact:
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: unspecifiedCC: markmc, yeylon
Target Milestone: ---Keywords: FutureFeature
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
URL: https://blueprints.launchpad.net/swift/+spec/account-acls
Whiteboard: upstream_milestone_none upstream_status_implemented upstream_definition_approved
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-03-19 17:37:38 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description RHOS Integration 2013-12-12 16:46:57 UTC 
Cloned from launchpad blueprint https://blueprints.launchpad.net/swift/+spec/account-acls.

Description:

Swift today can be extended using authorization middleware offering access control using container level ACLs, which  control object manipulation and listing. 

Swift deviates from this  approach when it comes to container manipulation and listing, where  account level ACLs are not supported. 
Instead Swift offers limited  support using a concept of account ownership. 
Swift should be extended to allow the development of authorization middleware offering access  control using account level ACLs. 
 
ACLs suggested way forward:
1. Complete the info work -  to have a more unified path to getting and retriving a/c info from a/c DBs
2. Add support for Account ACLs along the line of Container ACLs (look for code reuse)


Specification URL (additional information):

None