Hide Forgot
1. Proposed title of this feature request Need glance policy to be configured to include a read-only role . 3. What is the nature and description of the request? Customer has requirement of read-only admin role for all core services . 4. Why does the customer need this? (List the business requirements here) A read-only admin user is necessary for customer environment . Additional info: The following bug is raised for keystone to add role . This role can be configured in policy file . Bug 1228474 - [RFE] Read only role for tenant access (edit) https://blueprints.launchpad.net/keystone/+spec/admin-readonly-role
Hi, I must say I agree with Jamie Lennox's comment on this other bug: https://bugzilla.redhat.com/show_bug.cgi?id=1228474 . Defining roles really seems to be up to the user, or to the installer. I don't think such a change would be welcome upstream, nor could we easily maintain it downstream. Maybe this should be re-targeted to the installer? What do you think?
@rmascena This used to be a Glance bug, then it became a director bug, and you've just move it to Glance again. What has changed since we last discussed this bug?
*** Bug 1901689 has been marked as a duplicate of this bug. ***
NOTE: We have completed implementation of project member and project reader role for all APIs except metadef in wallaby cycle. Admin will continue to work as it is working earlier and will be modified once system scope is introduced.
The Glance part of this feature can probably be tested already using the latest RPM. @Lance: should we have a separate bug for the THT work?