Open Stack

Hi, 

I have some questions about instance quota, and instance access authorization. 

Openstack version is Havana (nova --version 2.15.0, keystone --version 0.3.2) 

I plan to use a small openstack project/tenant as an online virtual computer lab room. 
The project/tenant instance quota will be limited to 12 or 24 instances (as in a real lab room, there're 12 or 24 workstations). 
Keystone user database will point to our LDAP server where student posixaccounts are managed. Amount of potential users is around 800, ( maybe several thousand in the future when keystone will be saml/shibboleth compatible). 

A user will be restricted to 1 instance at a time, as in a real lab room a student can use 1 workstation at a time. 

The main idea is : 
- each student can access the online lab room.to launch an instance choosen among a small set of pre-defined images or flavors, 
- when tenant instance quota is reached, lab room is full, other sutdents will have to wait untill one or more instances being freed by their owners, 

Two questions : 
1) Is there a simple way to set per-user default instance quota to 1 and tenant instance quota to 12 ? 
2) how can I restrict instance access (console, reboot command,...) only to the owner of that instance ? 

Some ideas ? 

Regards. 



-----oOo----- 
Jacques Landru 
mel: landru~hat~telecom-lille.fr 
tel: +33 (0)3 2033 5556 
fax: +33 (0)3 2033 5598 

Telecom Lille 
Cite scientifique, rue G. Marconi, BP20145 
59653 VILLENEUVE D'ASCQ Cedex 
web: http://www.telecom-lille.fr 
Tel: +33 (0)3 2033 5577 
Fax: +33 (0)3 2033 5599 
-----oOo----- 



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20140110/cc83590d/attachment.html>