Dear Fuelers, I have some ideas and questions to share regarding Fuel Master access control. During 5,1 cycle we made some non optimal decision which we have to fix. The following blueprint describes required changes: https://blueprints.launchpad.net/fuel/+spec/access-control-master-node-improvments The next step to improve security is to introduce secure connection using HTTPS, it is described here: https://blueprints.launchpad.net/fuel/+spec/fuel-ssl-endpoints And now, there is question about next stages from original blueprint: https://blueprints.launchpad.net/fuel/+spec/access-control-master-node For example, from stage 3: - Node agent authorization, which will increase security. Currently, any one can change node data. What do you think do we need it now? Please read and comment first two blueprints. -- Łukasz Oleś -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20140909/cc9dc6c1/attachment.html>