<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<b>Security Strategy:</b><br>
<br>
1. Only handle existing linux users and groups, kimchi is positioned
to be a virtualization console, will not handle user management
which is host level admin.<br>
2. Two levels of privileges<br>
root users: console settings and virtualization
resources management<br>
full access to 'Host', 'Guests', 'Templates',
'Storage', 'Network'<br>
all root users can see all the guests,
templates, storage pools and volumes, networks no matter who created
it<br>
for created VMs, assign to non-root users with
either an admin or user role
<br>
non-root users: manage or use VMs assigned to them<br>
admin role: edit & delete their VMs<br>
user role: start, stop, vnc their VMs<br>
they only have access to 'Guests' tab<br>
In 'Guests' tab, only list VMs that they have an
admin or user role<br>
<br>
<b>UI Design:</b><br>
<br>
root users: <br>
all current UI will be available. <br>
for create a VM, add a section to add users with admin or
user role<br>
for edit a VM, also has a section for add/remove/change
users' access<br>
<br>
non-root users:<br>
As only one 'Guest' tab, remove tabs bar and the '+' bar<br>
Only list VMs that they have a role on<br>
If the user have 'admin' role, then all current actions
available<br>
if the user have 'user' role, then only actions 'start',
'stop', 'vnc' available<br>
</body>
</html>