[Openstack] Restricting volume attachment using policies
Markus Hentsch
markus.hentsch at cloudandheat.com
Mon Feb 20 10:07:16 UTC 2017
Am 20.02.2017 um 10:01 schrieb Vincent Gatignol:
> Le 20/02/2017 à 09:20, Markus Hentsch a écrit :
>> Hello,
>>
>> I'm running a Newton setup where I'm trying to restrict the volume
>> attachment actions using Nova's policy file.
>>
>> I want to check for both the VM ownership as well as the volume
>> ownership, so that users should be unable to attach volumes if they
>> aren't the owner of both the VM and the volume.
>>
> This is related to https://bugs.launchpad.net/nova/+bug/1539351
> Openstack policies are mapped at the tenant/project level, not user
>
> Regards,
> Vincent
Dear Vincent,
thanks for clarifying this!
Kind regards,
Markus Hentsch
Cloud&Heat Technologies
More information about the Openstack
mailing list