1042326 – [RFE][ceilometer]: support admin-only api access

Bug 1042326 - [RFE][ceilometer]: support admin-only api access

Summary: [RFE][ceilometer]: support admin-only api access

Keywords:
Status:	CLOSED UPSTREAM
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	RFEs
Sub Component:
Version:	unspecified
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Target Release:	---
Assignee:	RHOS Maint
QA Contact:
Docs Contact:
URL:	https://blueprints.launchpad.net/ceil...
Whiteboard:	upstream_milestone_none upstream_stat...
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2013-12-12 21:45 UTC by RHOS Integration
Modified:	2015-07-22 17:55 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-03-19 17:29:35 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description RHOS Integration 2013-12-12 21:45:39 UTC

Cloned from launchpad blueprint https://blueprints.launchpad.net/ceilometer/+spec/admin-only-api-access.

Description:

the current acl conditions for ceilometer api are as follows:  admins can query for any resource, regular users can only query for resources owned by the tenant they belong to.

as ceilometer collects more and more different types of data... some of the data collected may be 'privileged' data that only admins should have access to regardless of membership to a tenant (ie. audit data should only be visible to admins).  we need to support this somehow.

Specification URL (additional information):

None

Note You need to log in before you can comment on or make changes to this bug.