1401393 – [RFE] Security groups managed by admin should get applied by default to all instances.

Bug 1401393 - [RFE] Security groups managed by admin should get applied by default to all instances.

Summary: [RFE] Security groups managed by admin should get applied by default to all i...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-neutron
Sub Component:
Version:	10.0 (Newton)
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Assaf Muller
QA Contact:	Toni Freger
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1381612
TreeView+	depends on / blocked

Reported:	2016-12-05 06:42 UTC by Pratik Pravin Bandarkar
Modified:	2021-03-11 14:50 UTC (History)
CC List:	12 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2018-02-14 15:00:16 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Launchpad	1592000	0	None	None	None	2018-02-06 15:49:00 UTC

Description Pratik Pravin Bandarkar 2016-12-05 06:42:00 UTC

1. Proposed title of this feature request  
[RFE] Security groups managed by admin should get applied by default to all instances. 
     

3. What is the nature and description of the request?  
- The security group created by admin, should not be manipulated by any other user.
- If any user spawn instance in the tenant, then some security group created by admin should get applied to the instance. There should not be any option for user to bypass the security group created by admin.

Comment 5 Assaf Muller 2017-09-27 19:37:07 UTC

*** Bug 1496254 has been marked as a duplicate of this bug. ***

Comment 7 Assaf Muller 2018-02-14 15:00:16 UTC

I'm going ahead and close this RFE. It's been around for years, and every so often we discuss it upstream and it ends up being rejected. The main claim against the validity of this RFE is that it'll cause divergence between different OpenStack clouds / go against interoperability. I think it's more truthful to close this RFE than let is sit here for years with no response. It's become clear over time that this RFE will not be implemented in Neutron's security groups API.

Note You need to log in before you can comment on or make changes to this bug.