Hi Michael, Endpoints get managed by keystone, when issue a token from keystone, it will return a list of endpoints available to your requested user, if you are using v3 API, there is an option include_service_catalog which can be used to omit catalog info.
On Tue, Sep 16, 2014 at 1:28 AM, Michael Hearn <mrhe...@gmail.com> wrote: > Guys > > I see the cinderclient tool allows a non-privileged user the ability to > list endpoints for all services. > Is there any reason not to update the cinder policy file to disable this > behavior , and, can anyone tell me the policy that would need (adding) > updating. > I see no obvious policy in policy.json and the logs are not helpful. > > Many Thanks > Mike. > > _______________________________________________ > Mailing list: > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack@lists.openstack.org > Unsubscribe : > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > > -- Tang Yaguang
_______________________________________________ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
