Duplicated get_policy_target() method across code

+1. Sounds like a good idea to me.

Fix proposed to branch: master
Review: https://review.openstack.org/115251

I like the direction of the patch, this is definitely an improvement.

Could we consider improving things further by having instead one mixin (or superclass update) that sets most expected keys (e.g. user, project, domain ids) rather than just the one id that happens to exist in the default policy?

It seems to me we're currently blocking deployers from flexibly adapting policies. Because we expect a specific action to require a project_id, if a deployer want to change that so that for example only the owner can perform an action (e.g. allow a user to delete only an instance if they created it themselves) deployers are stuck, because we wrote a rule that only expects a project_id for this and doesn't know the user_id.

Then perhaps additional mixins for components that have additional keys, like neutron with network:tenant_id, etc, though to be honest I wouldn't particularly mind having them set generally and set to None when unneeded, there doesn't seem to be that many.

I have pushed a new patch set, that hopefully addresses some of the issues that you brought up here.

Reviewed: https://review.openstack.org/115251
Committed: https://git.openstack.org/cgit/openstack/horizon/commit/?id=107cf8b328f7cf1b7418fdbbad60c490ee1b1038
Submitter: Jenkins
Branch: master

commit 107cf8b328f7cf1b7418fdbbad60c490ee1b1038
Author: Sam Betts <email address hidden>
Date: Tue Aug 19 10:27:47 2014 +0100

    Add mixin to replace replicated get_policy_target

    Fix adds a mixin to replace the replicated get_policy_target
    function. Duplicated code is removed from many classes and mixin is
    inherited.

    project_id, user_id and domain_id are now default in the generated
    policy_target dict but are set to None if the data doesn't support it,
    this is to provide the most flexibility for operators writing policy.json
    as discussed in the bug report.

    policy_target_attrs attribute added by the mixin is overwrittable by
    sub-classes of the mixin to override the defaults for custom policy_target
    information.

    Change-Id: I26759f145b8756bd1eef585c8107160277061523
    Closes-Bug: 1317238