cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CLOUDSTACK-7958) Limit user login to specific subnets
Date Wed, 03 Jan 2018 10:01:00 GMT

    [ https://issues.apache.org/jira/browse/CLOUDSTACK-7958?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16309399#comment-16309399
] 

ASF GitHub Bot commented on CLOUDSTACK-7958:
--------------------------------------------

rhtyd commented on a change in pull request #2046: CLOUDSTACK-7958: Add configuration for
limit to CIDRs for Admin API calls
URL: https://github.com/apache/cloudstack/pull/2046#discussion_r159389912
 
 

 ##########
 File path: packaging/systemd/cloudstack-agent.service
 ##########
 @@ -18,8 +18,8 @@
 [Unit]
 Description=CloudStack Agent
 Documentation=http://www.cloudstack.org/
-Requires=libvirtd.service
-After=libvirtd.service
 
 Review comment:
   @wido this needs to be reverted, as the renaming of libvirtd to libvirt-bin happens via
the debian packging scripts. This will cause regressions for KVM. If found KVM hosts failing
to start.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


> Limit user login to specific subnets
> ------------------------------------
>
>                 Key: CLOUDSTACK-7958
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-7958
>             Project: CloudStack
>          Issue Type: New Feature
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: API, Management Server
>    Affects Versions: Future
>            Reporter: Wido den Hollander
>            Assignee: Wido den Hollander
>            Priority: Minor
>             Fix For: Future
>
>
> When exposing the API there is a potential danger that a user gets his hands on a account
with Admin privileges and does bad things to a cloud.
> It would be a useful feature if we could limit certain accounts/users to specific subnets.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message