Skip to content

Create a Platform Services Project

The following commands will setup a readonly user which is able to read data across domains.

Create the platform-services user and project

After running the following commands, a readonly user (example: platform-services) will have read only access to everything under the default and rackspace_cloud_domain domains.

Create a project

openstack --os-cloud default project create --description 'platform-services enablement' platform-services --domain default

Create a new zamboni user

Make sure to set the password accordingly

PASSWORD=SuperSecrete

openstack --os-cloud default user create --project platform-services --password ${PASSWORD} zamboni --domain default
Add the member role to the new user
openstack --os-cloud default role add --user zamboni --project platform-services member --inherited
Add the reader roles for user zamboni to the default domain
openstack --os-cloud default role add --user zamboni --domain default reader --inherited
Add the reader role for user zamboni to the rackspace_cloud_domain domain
openstack --os-cloud default role add --user zamboni --domain rackspace_cloud_domain reader --inherited
Add the reader role for user zamboni to the system
openstack --os-cloud default role add --user zamboni --system all reader

Create a new member user

Make sure to set the password accordingly

PASSWORD=SuperSecrete

openstack --os-cloud default user create --project platform-services --password ${PASSWORD} platform-services --domain default
Add the member roles to the new platform-services user
openstack --os-cloud default role add --user platform-services --project platform-services member --inherited
openstack --os-cloud default role add --user platform-services --domain default member --inherited

Create a new core user

Make sure to set the password accordingly

PASSWORD=SuperSecrete

openstack --os-cloud default user create --project platform-services --password ${PASSWORD} platform-services-core --domain default
Add the member role to the new core user
openstack --os-cloud default role add --user platform-services-core --project platform-services member --inherited
Add the reader roles for user platform-services-core to the default domain
openstack --os-cloud default role add --user platform-services-core --domain default reader --inherited
Add the reader role for user platform-services-core to the rackspace_cloud_domain domain
openstack --os-cloud default role add --user platform-services-core --domain rackspace_cloud_domain reader --inherited
Add the reader role for user platform-services-core to the system
openstack --os-cloud default role add --user platform-services-core --system all reader

Create a new alt user

Make sure to set the password accordingly

PASSWORD=SuperSecrete

openstack --os-cloud default user create --project platform-services --password ${PASSWORD} platform-services-core-alt --domain default
Add the member role to the new core-alt user
openstack --os-cloud default role add --user platform-services-core-alt --project platform-services member --inherited
Add the reader roles for user platform-services-core-alt to the default domain
openstack --os-cloud default role add --user platform-services-core-alt --domain default reader --inherited
Add the reader role for user platform-services-core-alt to the rackspace_cloud_domain domain
openstack --os-cloud default role add --user platform-services-core-alt --domain rackspace_cloud_domain reader --inherited
Add the reader role for user platform-services-core-alt to the system
openstack --os-cloud default role add --user platform-services-core-alt --system all reader