On Mon, Jan 6, 2014 at 2:56 PM, Georgy Okrokvertskhov < gokrokvertsk...@mirantis.com> wrote:
> Hi, > > In Solum project we will need to implement security and ACL for Solum API. > Currently we use Pecan framework for API. Pecan has its own security model > based on SecureController class. At the same time OpenStack widely uses > policy mechanism which uses json files to control access to specific API > methods. > > I wonder if someone has any experience with implementing security and ACL > stuff with using Pecan framework. What is the right way to provide security > for API? > In ceilometer we are using the keystone middleware and the policy framework to manage arguments that constrain the queries handled by the storage layer. http://git.openstack.org/cgit/openstack/ceilometer/tree/ceilometer/api/acl.py and http://git.openstack.org/cgit/openstack/ceilometer/tree/ceilometer/api/controllers/v2.py#n337 Doug > > Thanks > Georgy > > _______________________________________________ > OpenStack-dev mailing list > OpenStack-dev@lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > >
_______________________________________________ OpenStack-dev mailing list OpenStack-dev@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
