Fan
Cc: OpenStack Development Mailing List
Subject: Re: [openstack-dev] [Ceilometer] Policy Issue
On Mon, Feb 10 2014, ZhiQiang Fan wrote:
So, is this loose policy limit designed purposely, or it just a simple
implementation for policy?
It's just nobody stepped up to implement a more
On Mon, Feb 10 2014, ZhiQiang Fan wrote:
So, is this loose policy limit designed purposely, or it just a simple
implementation for policy?
It's just nobody stepped up to implement a more complete one, indeed.
So, is there any opportunity to implement more strict policy check, for
i.e. a
Hi,
I noticed that the Ceilometer project has no strict policy control, the
/etc/ceilometer/policy.json only has one single rule 'context_is_admin',
and for each specific resource operation, it will invoke acl.get_limit_to
and v2._verify_query_segregation to forbid non-admin role operate other