| Thread Previous • Date Previous • Date Next • Thread Next |
Public bug reported:
Glance has four different layers that implement some portion of access
control logic:
1.) the controller layer
2.) the authorization layer
3.) the policy layer
4.) the database layer
Adding support for system-scope or better policy checks is difficult
because it need to be updated in several different places. This can be
problematic because it can cause regressions and makes things harder to
maintain.
This is a bug to track the work for refactoring the policy logic into a
single layer so it's easier to maintain and change. This will likely
correlate to an official glance specification that details the work.
** Affects: glance
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Glance.
https://bugs.launchpad.net/bugs/1926326
Title:
Refactor the authorization and policy logic into a single layer
Status in Glance:
New
Bug description:
Glance has four different layers that implement some portion of access
control logic:
1.) the controller layer
2.) the authorization layer
3.) the policy layer
4.) the database layer
Adding support for system-scope or better policy checks is difficult
because it need to be updated in several different places. This can be
problematic because it can cause regressions and makes things harder
to maintain.
This is a bug to track the work for refactoring the policy logic into
a single layer so it's easier to maintain and change. This will likely
correlate to an official glance specification that details the work.
To manage notifications about this bug go to:
https://bugs.launchpad.net/glance/+bug/1926326/+subscriptions
| Thread Previous • Date Previous • Date Next • Thread Next |
