User 'admin' loses its permissions in current tenant after removing 'admin' role for itself in another tenant
Bug #1386696 reported by
Timur Sufiev
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mirantis OpenStack |
Fix Released
|
Medium
|
MOS Keystone | ||
6.0.x |
Won't Fix
|
Medium
|
Paul Karikh | ||
6.1.x |
Won't Fix
|
Medium
|
MOS Keystone | ||
7.0.x |
Fix Released
|
Medium
|
Rodion Tikunov | ||
8.0.x |
Fix Released
|
Medium
|
MOS Keystone |
Bug Description
Test step:
1: admin login
2:create a new project named p_admin_1
3:give admin member and admin role to this new project
4:remove the admin role for this project
test result:
Error: Unauthorized: Failed to modify 1 project members and update project quotas.
Error: Unauthorized: Unable to retrieve project list.
Upstream bug: https:/
Changed in mos: | |
status: | New → Confirmed |
tags: | added: horizon |
Changed in mos: | |
assignee: | nobody → MOS Horizon (mos-horizon) |
importance: | Undecided → Medium |
Changed in mos: | |
milestone: | none → 6.0 |
Changed in mos: | |
assignee: | MOS Horizon (mos-horizon) → Paul Karikh (pkarikh) |
Changed in mos: | |
status: | Confirmed → In Progress |
tags: | added: customer-found |
Changed in mos: | |
status: | In Progress → Triaged |
Changed in mos: | |
milestone: | 6.0 → 6.0.1 |
Changed in mos: | |
status: | Triaged → Won't Fix |
tags: |
added: keystone removed: horizon |
tags: | added: on-verification |
tags: | added: wontfix-risky |
tags: | added: on-verification |
tags: |
added: wontfix-risky removed: ontfix-risky |
To post a comment you must log in.
Seems like problem related to the fact that Keystone invalidates every token for a user after changing its roles within one tenant. /bugs.launchpad .net/mos/ +bug/1393732.
Related MOS Keystone bug: https:/