Ceilometer

Events RBAC via Policy

Registered by Matthew Edmonds on 2015-07-29

OpenStack needs to support granular, customizable Role-Based Access Control (RBAC) for ceilometer events. Policy should be dependent on policy.json rather than simply hard-coded.

Read the full specification

Blueprint information

Status:: Complete

Approver:: gordon chung

Priority:: Medium

Drafter:: Matthew Edmonds

Direction:: Approved

Assignee:: Divya K Konoor

Definition:: Approved

Series goal:: Accepted for liberty

Implementation:: Implemented

Milestone target:: 5.0.0

Started by: gordon chung on 2015-08-13

Completed by: gordon chung on 2015-09-09

Related branches

Related bugs

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:bp/events-rbac,n,z

Addressed by: https://review.openstack.org/211494
Control Events RBAC from policy.json

Addressed by: https://review.openstack.org/211509
Add user_id,project_id traits to audit events

Addressed by: https://review.openstack.org/212534
Events RBAC needs scoped token

Addressed by: https://review.openstack.org/212557
Events RBAC needs scoped token

Addressed by: https://review.openstack.org/217844
WIP Event filtering for non-admin users

Gerrit topic: https://review.openstack.org/#q,topic:events-rbac,n,z

Addressed by: https://review.openstack.org/218706
WIP restrict admin event access

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

No subscribers.