[Openstack-security] [openstack/ironic] SecurityImpact review request change I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Mon Jul 21 17:43:23 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/81391
Log:
commit 1954a0d4e62d1950700f52d05d7a2f7070a91ef3
Author: Josh Gachnang <josh at pcsforeducation.com>
Date: Wed Mar 19 16:47:38 2014 -0700
Adding swift temp url support
This patch will allow properly configured Glance servers to return a temporary
URL for an object hosted on Swift. It will require Glance to use Swift
as its backend. A temporary URL will let the agent download an image from
Glance without requiring an auth_token, which gives access more than just
Glance. The easiest way to use it is to enable direct_url in Glance, but
you can set the appropriate config options to avoid needing to enable it.
We/I need to add a note in the docs about Swift being a possible dependency
for Ironic deploys using IPA, along with how to set the Temp URL key.
Swift perfomance concerns will be addressed in this blueprint:
https://blueprints.launchpad.net/ironic/+spec/improve-swift-agent-downloads
SecurityImpact
DocImpact
Implements: blueprint swift-temp-urls
Change-Id: I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
More information about the Openstack-security
mailing list