[Openstack-security] [openstack/ironic] SecurityImpact review request change I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e

gerrit2 at review.openstack.org gerrit2 at review.openstack.org
Wed Jun 18 21:04:16 UTC 2014


Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/81391

Log:
commit f2f7eba2d00801bf61e11c277e54f5c160c2da59
Author: Josh Gachnang <josh at pcsforeducation.com>
Date:   Wed Mar 19 16:47:38 2014 -0700

    Adding swift temp url support
    
    This patch will allow properly configured Glance servers to return a temporary
    URL for an object hosted on Swift. It will require Glance to use Swift
    as its backend. A temporary URL will let the agent download an image from
    Glance without requiring an auth_token, which gives access more than just
    Glance. The easiest way to use it is to enable direct_url in Glance, but
    you can set the appropriate config options to avoid needing to enable it.
    
    We/I need to add a note in the docs about Swift being a possible dependency
    for Ironic deploys using IPA, along with how to set the Temp URL key.
    
    Swift perfomance concerns will be addressed in this blueprint:
    https://blueprints.launchpad.net/ironic/+spec/improve-swift-agent-downloads
    
    SecurityImpact
    DocImpact
    
    Implements: blueprint swift-temp-urls
    Change-Id: I10e4784eee63e8edc9ba30a9c5004a08aa3a6d8e





More information about the Openstack-security mailing list