[api] is_public defaults to true, and anyone can create a public package
Bug #1331243 reported by
Steve McLellan
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Murano |
Fix Released
|
Medium
|
Steve McLellan |
Bug Description
is_public defaults to true in the database model for packages and there's nothing controlling who can create public packages at present.
Glance treats is_public as a special property that triggers an additional policy check (publicize_image) that is typically restricted to admins (and as of Juno will be by default restricted to admins - https:/
Changed in murano: | |
status: | New → Confirmed |
importance: | Undecided → Medium |
milestone: | none → juno-2 |
Changed in murano: | |
assignee: | nobody → Ekaterina Chernova (efedorova) |
assignee: | Ekaterina Chernova (efedorova) → nobody |
Changed in murano: | |
assignee: | nobody → Steve McLellan (sjmc7) |
Changed in murano: | |
milestone: | juno-2 → juno-3 |
Changed in murano: | |
assignee: | Steve McLellan (sjmc7) → Ruslan Kamaldinov (ruhe) |
Changed in murano: | |
assignee: | Ruslan Kamaldinov (ruhe) → Steve McLellan (sjmc7) |
Changed in murano: | |
status: | Fix Committed → Fix Released |
Changed in murano: | |
milestone: | juno-3 → 2014.2 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/109153
Review: https:/