[openstack-dev] [Barbican] Providing service user read access to all tenant's certificates
Vijay Venkatachalam
Vijay.Venkatachalam at citrix.com
Fri Sep 18 19:47:30 UTC 2015
I would think OpenStack as Self Service portal.
Anyway, tenant’s admin need not play cloud admin’s role.
Only the cloud admin who sets up and manages openstack infrastructure (like controller Nodes etc) could know about the LBaaS service user. As much as possible the tenant admin should not be mandated to learn about the LBaaS service user.
From: Nathan Reller [mailto:nathan.s.reller at gmail.com]
Sent: 18 September 2015 18:32
To: OpenStack Development Mailing List (not for usage questions) <openstack-dev at lists.openstack.org>
Subject: Re: [openstack-dev] [Barbican] Providing service user read access to all tenant's certificates
> But that approach looks a little untidy, because tenant admin has to do some infrastructure work.
I would think infrastructure work would be part of the admin role. They are doing other things such as creating LBaaS, which seems like an infrastructure job to me. I would think configuring LBaaS and key management are similar. It seems like you think they are not similar. Can you explain more?
-Nate
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20150918/9ad25672/attachment.html>
More information about the OpenStack-dev
mailing list