Merge lp:~sandy-walsh/nova/admin-only-api into lp:~hudson-openstack/nova/trunk
Status: | Merged |
---|---|
Approved by: | Soren Hansen |
Approved revision: | 415 |
Merged at revision: | 453 |
Proposed branch: | lp:~sandy-walsh/nova/admin-only-api |
Merge into: | lp:~hudson-openstack/nova/trunk |
Diff against target: |
103 lines (+70/-0) 3 files modified
Authors (+1/-0) nova/api/openstack/__init__.py (+8/-0) nova/tests/api/openstack/test_adminapi.py (+61/-0) |
To merge this branch: | bzr merge lp:~sandy-walsh/nova/admin-only-api |
Related bugs: | |
Related blueprints: |
Administrative Calls available only on admin
(Essential)
|
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Eric Day (community) | Approve | ||
Devin Carlen (community) | Approve | ||
Review via email: mp+41666@code.launchpad.net |
Commit message
Flag to define which operations are exposed in the OpenStack API, disabling all others.
Description of the change
Adds a new flag --nova_
when blank (the default) all available openstack API operations are permitted. Alternatively, you may set this to be a comma separated list of strings. Operation names are singular (not the collection names)
Currently accepts options are: server, backup_schedule, image, flavor, sharedipgroup
So if you wanted to make API not accept "flavor" commands, do:
--nova_
TODO: If this list gets too long we could add a "--nova_
TESTING:
1. Leave --nova_
2. Get a flavor list from http://<ip:port>
3. Get an image list from http://<ip:port>
4. Both of the prior commands should work, even if results are empty.
5. Modify --nova_
(note that 'flavor' is left out)
6. Restart API and retry #2 and #3 again ... /flavors/* should report no route. As if the code was never there.
7. You can tack 'flavor' back onto your --nova_
I'm curious what the motivation is?
-- www.ubuntu. com/ www.openstack. org/
Soren Hansen
Ubuntu Developer http://
OpenStack Developer http://