[openstack-dev] [policy] AWS IAM session
Fox, Kevin M
Kevin.Fox at pnnl.gov
Wed Oct 4 21:26:33 UTC 2017
Yeah. Very interesting. Thanks for sharing.
Kevin
________________________________
From: Adam Heczko [aheczko at mirantis.com]
Sent: Wednesday, October 04, 2017 2:18 PM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [policy] AWS IAM session
Hi Devdatta, excellent post on IAM models.
Thank you!
On Wed, Oct 4, 2017 at 10:59 PM, Devdatta Kulkarni <kulkarni.devdatta at gmail.com<mailto:kulkarni.devdatta at gmail.com>> wrote:
+1
I spent some time recently studying IAM models of AWS and GCP.
Based on this I had created following post comparing and summarizing the two models at high-level:
http://devcentric.io/2017/07/13/comparing-iam-models-of-aws-and-gcp/
Thought of sharing it here as it may help with big-picture comparison of the two models.
Best regards,
Devdatta
On Wed, Oct 4, 2017 at 11:12 AM, Kristi Nikolla <kristi at nikolla.me<mailto:kristi at nikolla.me>> wrote:
+1
--
Kristi Nikolla
Software Engineer @ massopen.cloud
kristi at nikolla.me<mailto:kristi at nikolla.me>
On Wed, Oct 4, 2017, at 10:08 AM, Zane Bitter wrote:
> On 03/10/17 16:08, Lance Bragstad wrote:
> > Hey all,
> >
> > It was mentioned in today's keystone meeting [0] that it would be useful
> > to go through AWS IAM (or even GKE) as a group. With all the recent
> > policy discussions and work, it seems useful to get our eyes on another
> > system. The idea would be to spend time using a video conference/screen
> > share to go through and play with policy together. The end result should
> > keep us focused on the implementations we're working on today, but also
> > provide clarity for the long-term vision of OpenStack's RBAC system.
> >
> > Are you interested in attending? If so, please respond to the thread.
> > Once we have some interest, we can gauge when to hold the meeting, which
> > tools we can use, and setting up a test IAM account.
>
> +1, I'd like to attend this.
>
> Also I highly recommend
> http://start.jcolemorrison.com/aws-iam-policies-in-a-nutshell/ over the
> actual AWS docs as a compact reference.
>
> - ZB
>
> > Thanks,
> >
> > Lance
> >
> > [0]
> > http://eavesdrop.openstack.org/meetings/keystone/2017/keystone.2017-10-03-18.00.log.html#l-119
> >
> >
> >
> >
> > __________________________________________________________________________
> > OpenStack Development Mailing List (not for usage questions)
> > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe<http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe>
> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> >
>
>
> __________________________________________________________________________
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe:
> OpenStack-dev-request at lists.openstack.org?subject:unsubscribe<http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe>
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
__________________________________________________________________________
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe<http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe>
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
__________________________________________________________________________
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe<http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe>
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
--
Adam Heczko
Security Engineer @ Mirantis Inc.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20171004/145be7e1/attachment.html>
More information about the OpenStack-dev
mailing list