Hi Balázs,

May I ask why in Nova even user with admin role can't create VM using other user's Neutron port? The use case is in some services like Octavia and Trove, the service tenant user would like to create Service VMs (which are invisible to end users) but using the end user's openstack resources such as Neutron ports, giving the end user ability to customize the security group rules, e.g. allow IP addresses to access the load balancing service or database service.

---

Lingxian Kong

Senior Software Engineer

Catalyst Cloud

www.catalystcloud.nz

On Tue, Jul 21, 2020 at 1:54 AM Balázs Gibizer <balazs.gibizer@est.tech> wrote:

Hi,

As the spec freeze will happen next week at Milestone 2 we agreed[1] to
have a dedicated spec review day on Tuesday (07-21). If you are a spec
author then please prepare to react on the incoming feedback on your
open spec. If you are reviewer then please focus on reviewing open
specs during the day.

Cheers,
gibi

[1]
http://eavesdrop.openstack.org/meetings/nova/2020/nova.2020-07-16-16.00.log.html#l-40