On Fri, Jun 23 2017, Deepthi V V wrote: > Current gnocchi code supports RBAC at operation level > [gnocchi/gnocchi/rest/policy.json]. > Is it possible to add RBAC for attributes in a resource? > For eg: Restrict resource search/show should display specific attributes only > when query is performed by resource creator or admin.
oslo.policy does not have such a capability, so this is done by auth helpers: https://github.com/gnocchixyz/gnocchi/blob/master/gnocchi/rest/auth_helper.py They are picked by the `api.auth_mode' setting. Feel free to send patches or write a new one if you prefer. -- Julien Danjou /* Free Software hacker https://julien.danjou.info */
signature.asc
Description: PGP signature
__________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev