[rbac] Reader user can create, delete, update and restore backups
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
devstack |
Expired
|
Undecided
|
Unassigned |
Bug Description
This role shouldn't be able to perform these operations as it's a reader user.
The failures occurred during Zuul validation on u/s.
Running on OSP 17.1.0 worked as expected.
The responses for the operations are:
create:
{'backup': {'id': '915d04b0-
delete:
{}
* The operation returned {} but it actually deleted the backup
update:
{'backup': {'id': 'a48492ee-
restore:
{'restore': {'backup_id': '4b9d4dc4-
Can you please show the steps to reproduce this? I'm thinking that this is more of an issue in cinder than in devstack.