[openstack-dev] [cross-project] "Admin" ness not properly scoped

Thierry Carrez thierry at openstack.org
Fri Jul 24 09:10:36 UTC 2015

Adam Young wrote:
> [...]
> There should be no  "Global Admin Tokens."  They are a security risk,
> and violate the principal of Least Privilege.
> https://en.wikipedia.org/wiki/Principle_of_least_privilege.

Thanks for taking on this long-standing issue.

Should we have some cross-project spec to scope the work needed in the
various projects and track overall acceptance of the plan ?

Thierry Carrez (ttx)

More information about the OpenStack-dev mailing list