[Openstack-security] [openstack/ironic] SecurityImpact review request change I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Wed Jun 18 13:28:53 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/81391
Log:
commit 0f646dadb548d8bf703984a6aef7fb241fecec38
Author: Josh Gachnang <josh at pcsforeducation.com>
Date: Wed Mar 19 16:47:38 2014 -0700
Adding swift temp url support
This patch will allow properly configured Glance servers to return a temporary
URL for an object hosted on Swift. It will require Glance to use Swift
as its backend. A temporary URL will let the agent download an image from
Glance without requiring an auth_token, which gives access more than just
Glance. The easiest way to use it is to enable direct_url in Glance, but
you can set the appropriate config options to avoid needing to enable it.
We/I need to add a note in the docs about Swift being a possible dependency
for Ironic deploys using IPA, along with how to set the Temp URL key.
Swift perfomance concerns will be addressed in this blueprint:
https://blueprints.launchpad.net/ironic/+spec/improve-swift-agent-downloads
SecurityImpact
DocImpact
Implements: blueprint swift-temp-urls
Change-Id: I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
(cherry picked from commit fd55ab132d1910699180aea1c9e521c68aff2c9f)
More information about the Openstack-security
mailing list