During the OpenStack Victoria Project Team's Gathering we discussed the advantage of self-paced policy evolution.
To date, keystone and nova support scope-checking and default roles (e.g., admin
, member
, reader
). Both projects are currently carrying deprecated policies that allows for compatibility with legacy RBAC implementations. We, as service developers, want to know if we can remove the deprecated policies across services at different times or if we need to wait for each service to adopt the new concepts. For example, can nova and keystone remove their old, deprecated policies in Victoria before neutron, cinder, and glance fully implement system-scope and default roles?
Allowing each project to evolve their policies at their own pace simplifies the overall effort because it requires less coordination across projects. We want to know what ramifications a self-paced process will have on operators. The goal of this document is to define how to answer that question and report the results of the investigation. The findings should clearly tell us if a self-paced approach to policy evolution is feasible for operators and users.
The following assumptions and criteria determine if we've successfully reached our goal:
system-admin
or project-reader
affect deployments throughout the migrationor
or
By clicking below, you agree to our terms of service.
New to HackMD? Sign up
Syntax | Example | Reference | |
---|---|---|---|
# Header | Header | 基本排版 | |
- Unordered List |
|
||
1. Ordered List |
|
||
- [ ] Todo List |
|
||
> Blockquote | Blockquote |
||
**Bold font** | Bold font | ||
*Italics font* | Italics font | ||
~~Strikethrough~~ | |||
19^th^ | 19th | ||
H~2~O | H2O | ||
++Inserted text++ | Inserted text | ||
==Marked text== | Marked text | ||
[link text](https:// "title") | Link | ||
 | Image | ||
`Code` | Code |
在筆記中貼入程式碼 | |
```javascript var i = 0; ``` |
|
||
:smile: | ![]() |
Emoji list | |
{%youtube youtube_id %} | Externals | ||
$L^aT_eX$ | LaTeX | ||
:::info This is a alert area. ::: |
This is a alert area. |
On a scale of 0-10, how likely is it that you would recommend HackMD to your friends, family or business associates?
Please give us some advice and help us improve HackMD.
Do you want to remove this version name and description?
Syncing