Image access control is available
Bug #863305 reported by
Stanislaw Pitucha
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Fix Released
|
Medium
|
Stanislaw Pitucha | ||
Diablo |
Fix Released
|
Undecided
|
Unassigned | ||
nova (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Using glance for images and old style authentication, access control to images is very limited. Basic 2 problems are:
- users cannot see their own snapshots
- users can delete public image which does not belong to them (through nova image-delete)
tags: | added: server-o-rs |
security vulnerability: | no → yes |
Changed in nova (Ubuntu): | |
status: | New → Confirmed |
milestone: | none → ubuntu-11.10 |
Changed in nova: | |
milestone: | none → essex-1 |
status: | Confirmed → Fix Released |
Changed in nova: | |
assignee: | nobody → Stanislaw Pitucha (stanislaw-pitucha) |
Changed in nova: | |
milestone: | essex-1 → 2012.1 |
To post a comment you must log in.
Uploaded as: /review. openstack. org/761 /review. openstack. org/762
https:/
https:/
Those changes have only been done / tested in an environment with old authentication scheme. I may not be aware of additional issues coming from keystone integration.