Open Stack

I'd say that operators running Glance, which is probably almost everyone,
just put a public glance endpoint in the catalog. Maybe there's some
special cases beyond that but that's the base design.

On Jul 30, 2016 6:22 PM, "Serguei Bezverkhi (sbezverk)" <sbezverk at cisco.com>
wrote:

> Hi Joseph,
>
>
>
> I am working on kolla-kubernetes project, you probably heard about it. At
> this point, we have some services, example glance, running on the
> kubernetes cluster which we need to expose to external users. My goal is to
> collect information about how OpenStack operators provide access for their
> external users so we would consider it during designing of our approach of
> exposing these services. More details we get from the operators community,
> more chance that we will design something that will not break your current
> practices when eventually you move to run your Openstack services in
> kubernetes environment.
>
>
>
> Thank you
>
>
>
> Serguei
>
>
>
> *From:* Joseph Bajin [mailto:josephbajin at gmail.com]
> *Sent:* Saturday, July 30, 2016 4:03 PM
> *To:* Serguei Bezverkhi (sbezverk) <sbezverk at cisco.com>
> *Cc:* openstack-operators at lists.openstack.org
> *Subject:* Re: [Openstack-operators] (no subject)
>
>
>
> We let our people access the Glance API.  Glance uses Keystone, so user
> authentication is done the same way all the other services are done within
> OpenStack.  We allow the glance api ports to be available to them so they
> can use the service.
>
>
>
> What are you thinking that would prevent you from offering this to your
> customers?  I'm curious to know as glance is used in a lot of places.
>
>
>
> On Fri, Jul 29, 2016 at 4:30 PM, Serguei Bezverkhi (sbezverk) <
> sbezverk at cisco.com> wrote:
>
>
> Hello folks,
>
> I am curious if any of you allow your cliens to access let's say glance
> API by using glance client cli. If you do, I would appreciate if you could
> share how it is done. Do you expose glance api ports to outside with some
> sort of authentication proxy protection or it is done differently.
>
> Thank you
>
> Serguei
>
> _______________________________________________
> OpenStack-operators mailing list
> OpenStack-operators at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators
>
>
>
> _______________________________________________
> OpenStack-operators mailing list
> OpenStack-operators at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-operators/attachments/20160730/6222a932/attachment.html>