Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Can't find /etc/nova/policy.json

I installed DevStack on a 16.04 ubuntu Server and I want to create rules regarding instance management. For example:

  • I want only admin user to be able to create an instance in any given project.
  • Users of a certain project to be able only to start and shutdown an instance and nothing more than that.

So after reading the openstack artivcle about policies [http://docs.openstack.org/security-guide/identity/policies.html], I thought that the way to achieve this was to alter the /etc/nova/policy.json file but to my surprise there wasn't any policy file in /etc/nova. So I decided to create my sample policy.json file and populate with the lines given below:

{ "context_is_admin": "role:admin", "compute:create": "role:admin" }

I used the policy in order to try and achive my first goal (only admin create instances), but creating the file had no effect to the behavior of the system.

Is nova policy deprecated ? How can I make these rules apply to my system?

Thank you for your time.

Can't find /etc/nova/policy.json

I installed DevStack on a 16.04 ubuntu Server and I want to create rules regarding instance management. For example:

  • I want only admin user to be able to create an instance in any given project.
  • Users of a certain project to be able only to start and shutdown an instance and nothing more than that.

So after reading the openstack artivcle about policies [http://docs.openstack.org/security-guide/identity/policies.html], I thought that the way to achieve this was to alter the /etc/nova/policy.json file but to my surprise there wasn't any policy file in /etc/nova. So I decided to create my sample policy.json file and populate with the lines line given below:

{ "context_is_admin": "role:admin", "compute:create": "role:admin" }

I used the policy in order to try and achive my first goal (only admin create instances), but creating the file had no effect to the behavior of the system.

Is nova policy deprecated ? How can I make these rules apply to my system?

Thank you for your time.