[Openstack] Entities in OpenStack Auth
eday at oddments.org
Wed Mar 2 01:13:02 UTC 2011
On Tue, Mar 01, 2011 at 06:46:21PM -0600, Monsyne Dragon wrote:
> 1) Break CloudServers API compatibility (a total no-no)?
> No. The value is added to the server management url that is reported when
> you login. This is how the current Rackspace cloudservers API handles
Also, we could treat this as a v1.1 feature only, v1.0 would not
support it. Whatever works best.
> 2) Preclude us from having e.g. multi-project queries (show me all my
> servers in projects A and B)?
> It doesn't really preclude multi-account queries, if they are needed. You
> would be 'logged in' under a given account, but queries could potentially
> return info based on wider criteria, given user permissions. Also, since
> the server management url is dynamic (see above) it's easy to change that
> in the future if needed.
If nova can efficiently support it, we could also do
/v1.1/user/servers/ with a depth=2 and it would return all servers for
the user entity and all servers for all entities the user is a part of.
> The options I see open to us are:
> a) A cookie / header
> b) A query parameter
> c) Something in the request body
> I like (c) because it's the least hacky and is not tied to HTTP.
> Really it's not that hacky. it's basically just nested REST resources.
Plus the extra path element is consistent with how swift and glance
More information about the Openstack