tacker

Secure RBAC: Implement support of project-personas in Tacker

Registered by Manpreet Kaur on 2022-10-15

In the OpenStack Zed cycle, the Technical committee proposed introducing the project scope personas [1].

This is to introduce the member and reader roles to operate things within their project. By default, any other project role like foo will not be allowed to do anything in the project.

Reference for RBAC Etherpads:
https://etherpad.opendev.org/p/rbac-goal-tracking
https://etherpad.opendev.org/p/rbac-zed-ptg

[1] https://review.opendev.org/c/openstack/governance/+/847418

Blueprint information

Status:: Not started

Approver:: Yasufumi Ogawa

Priority:: Undefined

Drafter:: Manpreet Kaur

Direction:: Needs approval

Assignee:: Manpreet Kaur

Definition:: New

Series goal:: None

Implementation:: Unknown

Milestone target:: None

Related branches

Related bugs

Sprints

Whiteboard

Gerrit topic: https://review.opendev.org/#/q/topic:bp/implement-reader-role

Addressed by: https://review.opendev.org/c/openstack/tacker-specs/+/866956
[WIP]SRBAC: Implement project-personas in Tacker

Gerrit topic: https://review.opendev.org/#/q/topic:bp/implement-project-personas

Addressed by: https://review.opendev.org/c/openstack/tacker/+/870730
[WIP]SRBAC:Implement Project Personas in Tacker

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

No subscribers.