Unable to list instances for all tenants as non-admin, even while policy.json is configured properly
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mirantis OpenStack |
Won't Fix
|
Medium
|
Sergii Rizvan |
Bug Description
Requesting Backport of https:/
Detailed bug description:
Unable to list all instances for all tenants as a non-admin user, even with policy.json configured correctly
Steps to reproduce:
1. Create a new tenant
2. Create a new user with the _member_ role
3. Edit /etc/nova/
"compute:
4. Restart nova-api (even though I'm not certain this is necessary)
5. While scoped to the non-admin user, run the command "nova list --all-tenants"
Expected results:
Be returned with all instances from all tenants
Actual result:
Only returned with instances in the project that I'm scoped to
Reproducibility:
100%
Workaround:
Applied the fix on https:/
Impact:
Certain use cases would require a user with a specific role to have the ability to list all instances
Description of the environment:
- Operation system: Ubuntu 14.04
- Versions of components: MOS 7.0
- Reference architecture: N/A
- Network model: Neutron with Provider Network
- Related projects installed: N/A
Additional information:
Please provide a backport for this fix.
summary: |
- Unable to list instances for all tenants as non-admin, even with - policy.json set properly + Unable to list instances for all tenants as non-admin, even while + policy.json is configured properly |
tags: | added: ct1 |
Changed in mos: | |
status: | New → Confirmed |
importance: | Undecided → Medium |
assignee: | nobody → MOS Maintenance (mos-maintenance) |
Changed in mos: | |
assignee: | MOS Maintenance (mos-maintenance) → Sergii Rizvan (srizvan) |
Changed in mos: | |
milestone: | 7.0-updates → 7.0-mu-7 |
Fix proposed to branch: openstack- ci/fuel- 7.0/2015. 1.0 /review. fuel-infra. org/30024
Change author: Davanum Srinivas <email address hidden>
Review: https:/