at 10:41 AM
To: OpenStack Dev openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
Hi Kurt,
As for WSGI middleware I think about Pecan hooks which can be added before
actual controller call. Here is an example
Reply-To: OpenStack Dev openstack-dev@lists.openstack.org
Date: Wednesday, January 8, 2014 at 10:41 AM
To: OpenStack Dev openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
Hi Kurt,
As for WSGI middleware I think
-dev] [Solum][Pecan][Security] Pecan SecureController
vs. Nova policy
Hi Kurt,
As for WSGI middleware I think about Pecan hooks which can be added before
actual controller call. Here is an example how we added a hook for keystone
information collection:
https://review.openstack.org/#/c
...@mirantis.com
Reply-To: OpenStack Dev openstack-dev@lists.openstack.org
Date: Wednesday, January 8, 2014 at 10:41 AM
To: OpenStack Dev openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
Hi Kurt,
As for WSGI
...@dreamhost.com
Reply-To: OpenStack Dev openstack-dev@lists.openstack.org
Date: Tuesday, January 7, 2014 at 6:54 AM
To: OpenStack Dev openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
On Mon, Jan 6, 2014 at 6:26 PM
@lists.openstack.orgmailto:openstack-dev@lists.openstack.org
Date: Wednesday, January 8, 2014 at 10:41 AM
To: OpenStack Dev
openstack-dev@lists.openstack.orgmailto:openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan SecureController
vs. Nova policy
Hi Kurt,
As for WSGI
doug.hellm...@dreamhost.com
Reply-To: OpenStack Dev openstack-dev@lists.openstack.org
Date: Tuesday, January 7, 2014 at 6:54 AM
To: OpenStack Dev openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
On Mon, Jan 6
: [openstack-dev] [Solum][Pecan][Security] Pecan
SecureController vs. Nova policy
Hi Kurt,
As for WSGI middleware I think about Pecan hooks which can be
added before actual controller call. Here is an example how we
added a hook for keystone information collection:
https
On Mon, Jan 6, 2014 at 6:26 PM, Georgy Okrokvertskhov
gokrokvertsk...@mirantis.com wrote:
Hi Dough,
Thank you for pointing to this code. As I see you use OpenStack policy
framework but not Pecan security features. How do you implement fine grain
access control like user allowed to read
: Tuesday, January 7, 2014 at 6:54 AM
To: OpenStack Dev
openstack-dev@lists.openstack.orgmailto:openstack-dev@lists.openstack.org
Subject: Re: [openstack-dev] [Solum][Pecan][Security] Pecan SecureController
vs. Nova policy
On Mon, Jan 6, 2014 at 6:26 PM, Georgy Okrokvertskhov
gokrokvertsk
Hi,
In Solum project we will need to implement security and ACL for Solum API.
Currently we use Pecan framework for API. Pecan has its own security model
based on SecureController class. At the same time OpenStack widely uses
policy mechanism which uses json files to control access to specific
Hi Dough,
Thank you for pointing to this code. As I see you use OpenStack policy
framework but not Pecan security features. How do you implement fine grain
access control like user allowed to read only, writers and admins. Can you
block part of API methods for specific user like access to create
12 matches
Mail list logo