Allow regular user to list subnets on shared networks
Bug #1039591 reported by
Salvatore Orlando
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| neutron |
Fix Released
|
High
|
Salvatore Orlando | ||
Bug Description
Current policy configuration prevents regular users for listing subnets on shared network, because the policy is set to admin_or_owner.
It is important for nova (and possibly horizon) integration that a regular user can retrieve information for all subnets on a shared network. By construction all the subnets on a shared network are shared.
This can be achieved by exposing the shared attribute for subnets to the policy engine, and then enforcing resource-based policy which apply distinct rules to shared and private objects, as we do for networks.
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to quantum (master) | #1 |
| Changed in quantum: | |
| status: | Confirmed → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to quantum (master) | #2 |
| Changed in quantum: | |
| status: | In Progress → Fix Committed |
| Changed in quantum: | |
| status: | Fix Committed → Fix Released |
| Changed in quantum: | |
| milestone: | folsom-rc1 → 2012.2 |
To post a comment you must log in.
Fix proposed to branch: master
Review: https:/