Uploaded image for project: 'OASIS Topology and Orchestration Specification for Cloud Applications (TOSCA) TC'
  1. OASIS Topology and Orchestration Specification for Cloud Applications (TOSCA) TC
  2. TOSCA-154

DEFER - CSD05 - Decide how security/access control work with Nodes, update grammar, author descriptive text/examples

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Deferred
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: CSD2
    • Fix Version/s: CSD05
    • Component/s: Profile-YAML
    • Labels:
      None

      Description

      In terms of security...

      The most important thing is to decide how security affects the set of properties for base types.

      Derek: This seems to assume an SSH connection (simple access within same environment)

      Thomas: assumptions each orchestrator has ability to connect to VMS (SSH keys etc needs to be decided and are underspecified at the moment). In heat they have concept of key pairs (an additional resource type in the template).

      Derek: sometimes you want to deploy a network container, sometimes you want to define the network ports/switches etc. Basically, we need to support the idea of having to stand up a set of services with some network definitions (labs and environments). How can I deploy a set of servers with some connectivity to the outside world?

      Thomas: OS has a "resource group" with security settings. Would be good if someone could write some snippet in YAML to discuss.

        Attachments

          Activity

            People

            • Assignee:
              dpalma Derek Palma (Inactive)
              Reporter:
              mrutkows Matthew Rutkowski
            • Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: