Cannot suspend instance as regular user
Bug #924417 reported by
andrewsben
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Fix Released
|
Low
|
Brian Waldon |
Bug Description
When using a non-admin user calling suspend on an instance results in the error:
novaclient.
When doing the same actions as an admin user it works fine.
Steps:
Create or select instance, assign the object to a var, e.g. server
server.suspend() to suspend instance
displays the previously stated error
Expected:
Since it is an instance that is in my tenant I can suspend said instance.
Changed in nova: | |
status: | Triaged → In Progress |
Changed in nova: | |
status: | Fix Committed → Fix Released |
Changed in nova: | |
milestone: | essex-4 → 2012.1 |
To post a comment you must log in.
So this behavior is correct, as the default policy.json file restricts the compute_ extension: admin_actions rule to admins. But what makes sense here is to restrict access to the admin OR the owner of the server. Would that work for you?