Bug 1326393

Summary: [RFE] Implement Secure RBAC System Scoped Personas within swift
Product: Red Hat OpenStack Reporter: Jaison Raju <jraju>
Component: openstack-swiftAssignee: Pete Zaitcev <zaitcev>
Status: CLOSED ERRATA QA Contact: Havisha Kosti <hkosti>
Severity: medium Docs Contact: Andy Stillman <astillma>
Priority: high    
Version: 17.0 (Wallaby)CC: broose, cschwede, cylopez, derekh, djuran, eshames, gcharot, gfidente, hkosti, igarciam, jraju, jschluet, mariel, mburns, molasaga, morazi, nkinder, nlevinki, nsatsia, pveiga, spower, srevivo, zaitcev
Target Milestone: gaKeywords: FutureFeature, Triaged
Target Release: 17.1   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: openstack-swift-2.27.1-0.20220223182657.c5ea1ac.el8ost Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-08-16 01:09:22 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1228474, 1801416    
Bug Blocks: 1381612, 1956282    

Description Jaison Raju 2016-04-12 15:01:36 UTC 
1. Proposed title of this feature request  
Need swift policy to be configured to include a read-only role .
  
3. What is the nature and description of the request?  
Customer has requirement of read-only admin role for all core services .

4. Why does the customer need this? (List the business requirements here)  
  A read-only admin user is necessary for customer environment .
  
Additional info:
The following bug is raised for keystone to add role .
This role can be configured in policy file .
Bug 1228474 - [RFE] Read only role for tenant access (edit) 
https://blueprints.launchpad.net/keystone/+spec/admin-readonly-role
Comment 31 Lukas Svaty 2023-06-16 08:13:29 UTC 
Bulk moving target milestone to GA after the release of Beta on 14th June '23.
Comment 32 Havisha Kosti 2023-06-16 10:08:29 UTC 
Verified using https://rhos-ci-jenkins.lab.eng.tlv2.redhat.com/view/QE/view/OSP17.1/job/DFG-all-unified-17.1_d-rhel-vhost-3cont_2comp-ipv4-vxlan-lvm-fips/
Comment 40 errata-xmlrpc 2023-08-16 01:09:22 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Release of components for Red Hat OpenStack Platform 17.1 (Wallaby)), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:4577
Comment 41 Red Hat Bugzilla 2023-12-15 04:25:04 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days