Feature #215

Image authorization within cloud interfaces

Added by Gyula Csom over 10 years ago. Updated over 10 years ago.

Status:ClosedStart date:04/19/2010
Priority:NormalDue date:
Assignee:Daniel Molina% Done:

100%

Category:-
Target version:Release 2.0
Resolution: Pull request:

Description

Hi there,
currently the EC2 and OCCI cloud interfaces seem to work like this:

  1. A user can list the images uploaded herself, meanwhile images uploaded by another
    user don't show up within the image list.
  2. However if a user knows the image id of an image uploaded by someone else she
    can use it to create a new vm.

From my point of view (in its simplest form) the image authorization might/should
follow the authorization schema implemented by virtual networks, eg.:

  1. It would be useful to enable shared images, eg. to let users to use images
    uploaded by oneadmin. What's more it would be handy to show such images in the
    interface, too (eg. econe-describe-images and occi-storage).
  2. However it might provide more privacy, if the system prevented users from using
    images uploaded by other regular users.

Cheers,
Gyula

Associated revisions

Revision c83bb9a1
Added by Juan Jose Montiel Cano over 3 years ago

changed ar-datatable with ranges (#215)

History

#1 Updated by Ruben S. Montero over 10 years ago

  • Category set to 11
  • Target version set to Release 2.0

hi gyula

Thanks for the feedback, this totally needed. In fact it is related with #200. This issue will track the porting of the new functionality to the Cloud interfaces.

#2 Updated by Ruben S. Montero over 10 years ago

  • Status changed from New to Assigned
  • Assignee set to Daniel Molina

#3 Updated by Daniel Molina over 10 years ago

  • Status changed from Assigned to Closed
  • % Done changed from 0 to 100

Also available in: Atom PDF