Bug 1888788
Summary: | [RFE] Implement Secure RBAC Project Scoped Personas within manila | |||
---|---|---|---|---|
Product: | Red Hat OpenStack | Reporter: | Harry Rybacki <hrybacki> | |
Component: | openstack-manila | Assignee: | Goutham Pacha Ravi <gouthamr> | |
Status: | CLOSED ERRATA | QA Contact: | lkuchlan <lkuchlan> | |
Severity: | medium | Docs Contact: | Erin Peterson <erpeters> | |
Priority: | urgent | |||
Version: | 17.0 (Wallaby) | CC: | broose, chrisw, cylopez, djuran, ekuris, fboboc, gcharot, gfidente, gouthamr, igarciam, jelynch, jraju, jschluet, mariel, mburns, molasaga, morazi, nkinder, nlevinki, nsatsia, scohen, spower, srevivo, vhariria, vimartin | |
Target Milestone: | beta | Keywords: | AutomationBlocker, FutureFeature, Triaged | |
Target Release: | 17.1 | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | openstack-manila-12.1.1-0.20220204174037.e1e9670 | Doc Type: | Enhancement | |
Doc Text: |
With this update, the Shared File Systems service (manila) API supports a project-scoped 'reader' role. Users with the 'reader' role can send GET requests to the service, but they cannot make any other kind of request. You can enable this feature by using the `environments/enable-secure-rbac.yaml` environment file included with director. You can use the 'reader' role to create audit users for humans and automation and to perform read-only interactions safely with OpenStack APIs.
|
Story Points: | --- | |
Clone Of: | 1326391 | |||
: | 1890785 (view as bug list) | Environment: | ||
Last Closed: | 2023-08-16 01:09:25 UTC | Type: | --- | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | 1228474, 1326391, 1801416, 1904499 | |||
Bug Blocks: | 1381612, 1566243, 1890785, 1956283, 2125342 |
Comment 32
errata-xmlrpc
2023-08-16 01:09:25 UTC
|