Create a custom role in Openstack to provide read-only access for a single tenant?

Question

I'm running devstack (master from github as of 11/21/2014) with the Horizon v2 api (default) and I want to create a read-only user account/role for viewing a single tenant's resources. I'm fairly new to things, and /etc/nova/policy.json and /etc/keystone/policy.json make very little sense right now.

Has anyone created a role that permits just viewing things and no edits/updates/changes? If so, any advice on how to accomplish that?

I'm looking to do the same thing. I don't suppose you ever found an answer? — Jeff D, Feb 16 '15 at 19:22

score 0 · Answer 1 · answered Aug 05 '21 at 18:17

0

Rocky Release of Openstack have introduced Reader role.

refer:- https://docs.openstack.org/keystone/latest/admin/service-api-protection.html

answered Aug 05 '21 at 18:17

Naresh Kumar Venu

1

While this link may answer the question, it is better to include the essential parts of the answer here and provide the link for reference. Link-only answers can become invalid if the linked page changes. – Tyler2P Aug 18 '21 at 10:13

Create a custom role in Openstack to provide read-only access for a single tenant?

1 Answers1