canonical/cpe-deployments
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
cpe-deployments/resources/nova.yaml
Arif Ali daeaf78436
Update to latest code 
* Add new policies
* start migrating to CH
* Add asrock04 to the mix
2023-04-11 15:36:58 +01:00

17 lines
1.0 KiB
YAML
Raw Blame History

# default rules
# https://docs.openstack.org/nova/ussuri/configuration/policy.html
context_is_tenantLead: role:tenantLead
os_compute_api:os-admin-actions:reset_state: rule:context_is_tenantLead or rule:system_admin_api
os_compute_api:os-aggregates:index: rule:context_is_tenantLead or rule:system_reader_api
os_compute_api:os-aggregates:show: rule:context_is_tenantLead or rule:system_reader_api
os_compute_api:os-availability-zone:detail: rule:context_is_tenantLead or rule:system_reader_api
os_compute_api:os-extended-server-attributes: rule:context_is_tenantLead or rule:system_admin_api
os_compute_api:os-hosts: rule:context_is_tenantLead or rule:admin_api
os_compute_api:os-hypervisors:servers: rule:context_is_tenantLead or rule:system_reader_api
os_compute_api:os-hypervisors:list-detail: rule:context_is_tenantLead or rule:system_reader_api
os_compute_api:os-migrate-server:migrate: rule:context_is_tenantLead or rule:system_admin_api
os_compute_api:os-migrate-server:migrate_live: rule:context_is_tenantLead or rule:system_admin_api
Reference in New Issue View Git Blame Copy Permalink