openstack
/
keystone
Code Issues Proposed changes

Merge "Add link to describe Principle of Least Privilege"

This commit is contained in:
Zuul 2019-06-19 07:33:16 +00:00 committed by Gerrit Code Review
parent 94a1b57897 0f7a1c47c8
commit d5da988792
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
doc/source/contributor/vision-reflection.rst
View File

@ -108,7 +108,7 @@ Customizable Integration
In service of supporting customizable integration both between OpenStack
services and from client applications, keystone has an ongoing mission to
fulfill the Principle of Least Privilege and permit the cloud consumer to
fulfill the `Principle of Least Privilege`_ and permit the cloud consumer to
delegate only the minimum permissions needed to an application. Keystone works
to provide this both through reforming OpenStack policy to make it easier to
manage across services, and by providing new mechanisms such as application
@ -129,5 +129,7 @@ Secure by Design
Keystone strives to be secure by design, by making opinionated choices about the
default security configuration. Making it easier to administer fine-grained
access control in support of the Principle of Least Privilege is an ongoing
access control in support of the `Principle of Least Privilege`_ is an ongoing
effort.
.. _Principle of Least Privilege: https://en.wikipedia.org/wiki/Principle_of_least_privilege