octavia/releasenotes/notes/octavia_v2_RBAC-0eb2b51aa6278435.yaml
Michael Johnson 3007738fec Update some links to the new docs locations.
Change-Id: Ic10c2a2d924e5daa5567f33ccb80d6e33949f636
2017-07-05 15:37:28 -07:00

19 lines
836 B
YAML

---
features:
- |
The Octavia v2 API now supports Role Based Access Control (RBAC).
The default rules require users to have a load-balancer_* role to be
able to access the Octavia v2 API. This can be overriden with the
admin_or_owner-policy.json sample file provided.
See the `Octavia Policies
<https://docs.openstack.org/octavia/latest/configuration/policy.html>`_
document for more information.
security:
- |
Note that while the Octavia v2 API now supports Role Bassed Access
Control (RBAC), the Octavia v1.0 API does not. The Octavia v1.0 API
should not be exposed publicly and should only be used internally
such as for the neutron-lbaas octavia driver. Publicly accessible
instances of the Octavia API should have the v1.0 API disabled via the
Octavia configuration file.