Glance

  1. Bug #1065187
  2. Comment #21

Comment 21 for bug 1065187

Revision history for this message
Stuart McLaren (stuart-mclaren) wrote : Re: Non-admin users can cause public glance images to be deleted from the backend storage repository

Hmm, the formatting for my post got lost -- sorry.

In "schedule_delete_from_backend" the "delete_from_backend" is indented so its part of the 'if not use_delay' conditional. My reading of this is that that whole if block will get skipped when delayed delete is switched on. We'll then hit the line where an attempt to set 'pending_delete' is made, and -- as far as I can tell -- get a not authorized at that point.

Am I reading this wrong/is there another path that takes us to 'delete_from_backend()'?

Thanks.