21250cf20c
The Oslo Policy library provides support for RBAC policy enforcement across all OpenStack services. Update the devstack plugin to copy the default policy file over to /etc/trove in the gate environments. Note: Not adding a rule for 'reset-password' instance action as that API was discontinued years ago and is now just waiting for removal (Bug: 1645866). DocImpact Co-Authored-By: Ali Adil <aadil@tesora.com> Change-Id: Ic443a4c663301840406cad537159eab7b0b5ed1c Implements: blueprint trove-policy
9 lines
234 B
YAML
9 lines
234 B
YAML
---
|
|
features:
|
|
- Add RBAC (role-based access control)
|
|
enforcement on all trove APIs.
|
|
Allows to define a role-based access rule
|
|
for every trove API call
|
|
(rule definitions are available in
|
|
/etc/trove/policy.json).
|