correajl opened a new issue, #7937:
URL: https://github.com/apache/cloudstack/issues/7937
##### ISSUE TYPE
<!-- Pick one below and delete the rest -->
* Enhancement Request
##### CLOUDSTACK VERSION
<!--
New line separated list of affected versions, commit ID for issues on main
branch.
-->
~~~
All
~~~
##### SUMMARY
<!-- Explain the problem/feature briefly -->
It will be important if we can restrict deletion of an instance to the
creator only.
For example, in a Project with some users. If user A creates an instance,
only user A can delete it. This will avoid one user to delete instances from
another by mistake.
The main scope of this feature is "Project", where more than one user can
delete instances. "Project Admin" should always delete any instance to keep the
administration role. But, there should be a role (maybe normal user) under this
restriction.
The changes can be made in destroyVirtualMachine() API. API can identify in
what Project the instance is, so check if only.owner.delete is true and limit
the API actions.
##### STEPS TO REPRODUCE
Inside a Project, if a user creates an instance, another user can delete it.
<!-- You can also paste gist.github.com links for larger files -->
##### EXPECTED RESULTS
<!-- What did you expect to happen when running the steps above? -->
~~~
Some control as a user can't delete instances that he/she didn't create, or
ask for approval from the owner.
~~~
##### ACTUAL RESULTS
<!-- What actually happened? -->
<!-- Paste verbatim command output between quotes below -->
~~~
Instances are deleted.
~~~
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
