Same Keypairs accessible in multiple projects assigned to same user
Bug #1301626 reported by
Sharath Rao
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Compute (nova) |
Opinion
|
Undecided
|
Unassigned | ||
| OpenStack Dashboard (Horizon) |
Won't Fix
|
Undecided
|
Unassigned | ||
Bug Description
If I have two projects assigned to the same user in Horizon Dashboard.
Each project has a separate ID, separate set of VMs and different floating IPs and different security rules assigned.
But, The Keypairs are being shared for both the projects are the same.
This is causing an issue since this implies that I can access VMs belonging to different projects using the same key pair.
Also, i cannot add new keypairs for a particular project as its becoming visible in both the projects.
Revision history for this message
| Akihiro Motoki (amotoki) wrote | #1 |
| Changed in horizon: | |
| status: | New → Won't Fix |
Revision history for this message
| Sharath Rao (sharath-rao) wrote | #2 |
| tags: | added: api |
Revision history for this message
| Eric Brown (ericwb) wrote | #3 |
| Changed in nova: | |
| status: | New → Opinion |
To post a comment you must log in.
In Nova, each keypair belongs to a user not a project. It is a nova behavior. In my understanding, the behavior is reasonable because sharing a keypair means all folks in a project share one private key and it is not a good idea from security perspective. If you need to share a VM, you can add ssh public keys to VM's authorized_key to share a VM.
I mark this bug "Won't fix" as Horizon.
If you need to discuss this behavior further, please discuss it on ML or add Nova to "affected projects".