openstack/cyborg
Code Issues Proposed changes
master
cyborg/doc/source/configuration/policy-guide.rst
Yumeng Bao 68c1f067bf add document for cyborg new policy 
This patch added the document for new policy of cyborg inculding:
* cyborg policy concepts
* configuration guide
* all policies in code

Change-Id: I79472317c5c1b4aa2660e1c2d5cc61737299975a
Story: 2007024
Task: 40934
2020-09-27 14:16:37 +08:00

1.4 KiB
Raw Permalink Blame History

Cyborg Policy Configuration Guide

Cyborg, like most OpenStack projects, uses a policy language to restrict permissions on REST API actions.

  • Policy Concepts <policy-concepts>: In the Victoria release, Cyborg API policy defines new default roles with system scope capabilities. These new changes improve the security level and manageability of Cyborg API as they are richer in terms of handling access at system and project level token with 'Read' and 'Write' roles.

policy-concepts

  • Policy Reference <policy>: A complete reference of all policy points in cyborg and what they impact.

html

  • Sample Policy File <sample-policy>: A sample cyborg policy file with inline documentation.

policy

html

sample-policy