<div dir="ltr">Hi Lukasz,<div><br></div><div>Regarding to '<span style="font-family:arial,sans-serif;font-size:13px">Node agent authorization' do you have some ideas how it could be done?</span></div><div><span style="font-family:arial,sans-serif;font-size:13px">For me it looks really complicated, because we don't upgrade agents on slave nodes and</span></div><div><font face="arial, sans-serif">I'm not sure if we will be able to do it in the nearest future.</font></div><div><font face="arial, sans-serif"><br></font></div><div><font face="arial, sans-serif">Thanks,</font></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Sep 9, 2014 at 1:50 PM, Lukasz Oles <span dir="ltr"><<a href="mailto:loles@mirantis.com" target="_blank">loles@mirantis.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Dear Fuelers,<div><br></div><div>I have some ideas and questions to share regarding Fuel Master access control. </div><div><br></div><div>During 5,1 cycle we made some non optimal decision which we have to fix. The following blueprint describes required changes:</div><div><br></div><div><a href="https://blueprints.launchpad.net/fuel/+spec/access-control-master-node-improvments" target="_blank">https://blueprints.launchpad.net/fuel/+spec/access-control-master-node-improvments</a></div><div><br></div><div>The next step to improve security is to introduce secure connection using HTTPS, it is described here:</div><div><br></div><div><a href="https://blueprints.launchpad.net/fuel/+spec/fuel-ssl-endpoints" target="_blank">https://blueprints.launchpad.net/fuel/+spec/fuel-ssl-endpoints</a><br></div><div><br></div><div>And now, there is question about next stages from original blueprint:</div><div><br></div><div><a href="https://blueprints.launchpad.net/fuel/+spec/access-control-master-node" target="_blank">https://blueprints.launchpad.net/fuel/+spec/access-control-master-node</a><br></div><div><br></div><div>For example, from stage 3:</div><div>- Node agent authorization, which will increase security. Currently, any one can change node data.</div><div>What do you think do we need it now?</div><div><br></div><div>Please read and comment first two blueprints.</div><span class="HOEnZb"><font color="#888888"><div><div><br></div>-- <br><div dir="ltr">Łukasz Oleś</div>
</div></font></span></div>
<br>_______________________________________________<br>
OpenStack-dev mailing list<br>
<a href="mailto:OpenStack-dev@lists.openstack.org">OpenStack-dev@lists.openstack.org</a><br>
<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev" target="_blank">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev</a><br>
<br></blockquote></div><br></div>