Updating an image as demo user logs user out

It's worse than that. Even as an admin user (with a username that matches the "owner" attribute on the image) I'm getting logged out. This is serious enough to be a blocker for the RC.

I've added glance to this bug report because the deeper issue here is that Glance is sending back a Forbidden response without any message indicating why the action was forbidden, lending no help to either end users or developers as to what can be done to correct or improve upon the situation.

I'm not sure how to treat this differently in Glance. I'm assuming you're getting a 403 because you're attempting to edit a public image you don't own. However, it is odd that an admin user is seeing the same behavior. I'll look into what's up with that.

I can't reproduce the inability of the owner to edit the image. Looking at the code, it doesn't appear that admins can edit every image, but thats a different scenario.

It turns out:

  1. glance scopes image ownership to the tenant name, not the tenant id, or user id, nor even the user name which is what horizon is checking. Bug here: https://bugs.launchpad.net/glance/+bug/950364

  2. glance fails to respect the admin context and thus tries to use the scoped tenant to authorize the request, even if the user is an admin. (bug forthcoming from bcwaldon)

  3. the glance client fails to differentiate between 401 and 403 status codes (bug here: https://bugs.launchpad.net/glance/+bug/956513) so while logging the user out is appropriate behavior for a 401 and *not* for a 403, horizon isn't given the proper data to take the correct action.

Bug report for item 2 above: https://bugs.launchpad.net/glance/+bug/956547

Untargeting glance as we have separate bugs filed.

Fix proposed to branch: master
Review: https://review.openstack.org/5549

Reviewed: https://review.openstack.org/5549
Committed: http://github.com/openstack/horizon/commit/2a51171517de2890d26130225a60901827fdfd51
Submitter: Jenkins
Branch: master

commit 2a51171517de2890d26130225a60901827fdfd51
Author: Gabriel Hurley <email address hidden>
Date: Mon Mar 19 18:49:01 2012 -0700

    Corrects glance image action permissions.

      * Admins have full permissions to edit and delete images
        from syspanel, plus Glance's client returns a proper
        403 error instead of 401, so inappropriate access no longer
        logs the user out inappropriately. Fixes bug 955744.
      * Regular users can edit and delete if their tenant owns the
        image. Fixes bug 950364 and fixes bug 737360.

    Note, this requires the latest version of Glance.

    Change-Id: Ib816d7e6e1320a9024c5dbe95b04249291ec0463