Hello,
i'm running OpenNebula 4.0.1, freshly installed, and I'd like to implement
the following use-case ACL-wise: when users login through the sunstone
interface, they should see if other VMs are currently running and on which
hosts. Clearly, on VMs owned by other users (even if in the same group), no
managing actions should be allowed.
This is the current set of ACL rules installed ( i believe these are the
default ones):
ID USER RES_VHNIUTGDCO RID OPE_UMAC
0 @1 V-NI-T---- * ---c
11 @1 -H-------- * um--
16 * ---------O * ---c
If I add this: "@1 VM/* USE" , all users can see all other users' VMs but
all actions seem to be available (at least through the web interface).
Is this scenario supported somehow?
Thanks,
Valerio
_______________________________________________
Users mailing list
Users@lists.opennebula.org
http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
