[Openstack-security] [openstack/ironic] SecurityImpact review request change I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Tue Jun 17 21:43:38 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/81391
Log:
commit a3cb72314b8e9a467018d15a3be8f287d2aa3317
Author: Josh Gachnang <josh at pcsforeducation.com>
Date: Wed Mar 19 16:47:38 2014 -0700
Adding swift temp url support
This patch will allow properly configured Glance servers to return a temporary
URL for an object hosted on Swift. It will require Glance to use Swift
as its backend. A temporary URL will let the agent download an image from
Glance without requiring an auth_token, which gives access more than just
Glance. The easiest way to use it is to enable direct_url in Glance, but
you can set the appropriate config options to avoid needing to enable it.
We/I need to add a note in the docs about Swift being a possible dependency
for Ironic deploys using IPA, along with how to set the Temp URL key.
Swift perfomance concerns will be addressed in this blueprint:
https://blueprints.launchpad.net/ironic/+spec/improve-swift-agent-downloads
SecurityImpact
DocImpact
Implements: blueprint swift-temp-urls
Change-Id: I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e
More information about the Openstack-security
mailing list