[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [Libvir] [PATCH] About remote operation restrictions of a generaluser

From: Daniel Veillard <veillard redhat com>
To: Atsushi SAKAI <sakaia jp fujitsu com>
Cc: libvir-list redhat com
Subject: Re: [Libvir] [PATCH] About remote operation restrictions of a generaluser
Date: Wed, 4 Apr 2007 08:55:47 -0400

On Wed, Apr 04, 2007 at 09:33:53PM +0900, Atsushi SAKAI wrote:
> Hi, Daniel
> 
>  This issue should be based on libvirt Authorization Model.
> I do not know libvirt Authorization model.
> How do you think? or any document exists?
> Or should be discuss libvirt Authorization Model later?

  Well currently this depends on the kind of virtualization used.
For Xen normal user access is though the proxy and that's a read-only acces.
For KEmu a non priviledged user will only be able to see and control the
emulators running under his own user id. The models are very different and
it's on a case by case basis, i.e. each driver will have different
capabilities. The authorization model is not global.

Daniel

-- 
Red Hat Virtualization group http://redhat.com/virtualization/
Daniel Veillard      | virtualization library  http://libvirt.org/
veillard redhat com  | libxml GNOME XML XSLT toolkit  http://xmlsoft.org/
http://veillard.com/ | Rpmfind RPM search engine  http://rpmfind.net/

Follow-Ups:
- Re: [Libvir] [PATCH] About remote operation restrictions of a generaluser
  - From: S.Sakamoto

References:
- Re: [Libvir] [PATCH] About remote operation restrictions of a general user
  - From: Daniel Veillard
- Re: [Libvir] [PATCH] About remote operation restrictions of a generaluser
  - From: Atsushi SAKAI

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]