Cloud Scheduler shouldn't store secret credentials in metadata service

[rptaylor]

The metadata service is not secure: https://wiki.openstack.org/wiki/OSSN/OSSN-0074

Not sure what alternatives can be used though?

[mhpx]

We'd have to go back to hard coding things into the image and have the images be private.

[mhpx]

seems http://docs.openstack.org/user-guide/cli-config-drive.html is a suggested solution, or the cloud itself needs a proxy in front of the metadata server to filter the malicious requests