History

Ian Cordasco 8bebbc6e53 Harden our copy of Glance's policy

Most of Glance's current checks are implemented in the API controllers
but in Kilo, Glance added the ability to actually define meaningful
policy rules around images and image members. In an effort to harden
our default config as best as we can, we should check to see if the
user trying to perform some of these actions are either an admin or the
owner of the image.

Change-Id: I2dcf4d828c9be88143174de30a6b59d655ab0539
Closes-bug: 1408363

2015-05-06 13:08:20 +00:00

defaults

Default glance swift_backend to use local swift

2015-04-30 17:38:27 +01:00

files

Harden our copy of Glance's policy

2015-05-06 13:08:20 +00:00

handlers

Convert existing roles into galaxy roles

2015-02-18 10:56:25 +00:00

README.rst

OpenStack glance

tags: openstack, glance, cloud, ansible
category: *nix

Role to install glance and glance registry.

This role will install the following:

glance-api
glance-registry

- name: Install glance server
  hosts: glance_all
  user: root
  roles:
    - { role: "os_glance", tags: [ "os-glance" ] }
  vars:
    external_lb_vip_address: 172.16.24.1
    internal_lb_vip_address: 192.168.0.1
    galera_address: "{{ internal_lb_vip_address }}"