I'm using essex 2012.1 and I'm running into an issue with tenant
separation using the ec2 api. I end up having to give a user the
'admin' role in keytone to create instances within a tenant. I can
live with that but the problem is, now that the user has 'admin', they
also see all of the instances
Which version of the code are you using? This could potentially be a bug.
Can you give some more information on what goes wrong with creating an instance?
Do you get a traceback anywhere?
Vish
On Aug 2, 2012, at 1:23 PM, Mitchell Broome wrote:
> I'm using essex 2012.1 and I'm running into an is
On Thu, Aug 2, 2012 at 1:23 PM, Mitchell Broome
wrote:
> I'm using essex 2012.1 and I'm running into an issue with tenant
> separation using the ec2 api. I end up having to give a user the
> 'admin' role in keytone to create instances within a tenant. I can
> live with that but the problem is, n
Ryan,
This looks like what the problem was. I'm running 2012.1 from the
epel packages on centos 6.2. The ec2 layer doesn't look like it
follows policy.json by default. It still has roles for netadmin,
sysadmin and projectmanager hard coded in nova/api/ec2/__init__.py.
Right now, I'm just making
4 matches
Mail list logo
