I don't find how to create role who can just view instance for exemple !!
someone can help and show how to create role in VIO ????
You may create any role with keystone
but you may need to customize access policy (policy.json file) for nova
if you want to different permissions to take effect on these roles.
Thank you for your answer
i need syntaxe for customize access in policy.json nova if you help me !!! i try everything but nothing work
After creating a new role (openstack role create...),
You may create a new rule in the policy.json
for each action that you want to define ACL
specify the rule to apply
You may refer to the default policy.json for ACTION_NAME.
You will also need to restart the service after the changes.
I did it in policy.json in nova but i have the same problem, nothing work !