Jump to: navigation, search

Translations:ReleaseNotes/Liberty/142/zh-tw

Revision as of 07:07, 29 October 2015 by WebberGuo (talk | contribs)
  • 新增專案管理員能力去創建每個專案憑證授權。此外, 專案管理員能夠定義和管理每一個專案優先憑證配發機構(CAs)。讓允許專案實現特定安全性domains
  • Barbican現在有每個專案支援額度限制,可以一個專案下創建Barbican資源數量。在默認的情況下quota設定為沒有限制可以在Barbican更改設定。
  • 支援其使用於包含專案級別 keys的輪轉主要key。在這種輕量級的方法,只有專案級別key (KEK) 是re-wrapped 新的主要的key (MKEK)。目前只適用於 PKCS11 plug-in 。(http://specs.openstack.org/openstack/barbican-specs/specs/liberty/add-crypto-mkek-rotation-support-lightweight.html)
  • 更新Barbican's root資源返回版本訊息符合Keystone, Nova 和 Manila 格式。這是使用keystoneclient's的版本端點查詢功能。
  • Removed administrator endpoint as all operations are available on a regular endpoint. No separate endpoint is needed as access restrictions are enforced via Oslo policy.
  • Added configuration for enabling sqlalchemy pool for the management of SQL connections.
  • Added ability to list secrets which are accessible via ACL using GET /v1/secrets?acl-only=true request.
  • Improved functional test coverage around Barbican APIs related to ACL operations, RBAC policy and secrets.
  • Fixed issues around creation of SnakeOil CA plug-in instance.
  • Barbican client CLI can now take a Keystone token for authentication. Earlier only username and password based authentication was supported.
  • Barbican client now has ability to create and list certificate orders.
Retrieved from "https://wiki.openstack.org/w/index.php?title=Translations:ReleaseNotes/Liberty/142/zh-tw&oldid=95040"