Provide more details about image visibility updates and creation errors
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Dashboard (Horizon) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
Using both the glance CLI or the OpenStack web UI, I cannot create an image with public visibility nor can I update an image to have public visibility.
Why am I provided with this option if I can never do it?
Why is it not allowed?
Why does the UI allow me to attempt the action and then provide an error message with no information about what the problem is?
If I attempt to do the action with glance `glance image-create --name foo --visibility public ...` or `glance image-update --visibility public ...` it at least gives me a 403 forbidden.
The web UI just gives a generic "Error: Unable to update the image." message with no information.
From searching around on the web, it looks like this feature has not been available for maybe even 4 years! See: https:/
This user seems to have run into this problem two years ago: https:/
I can only think this has never been tested as a non admin user, and that perhaps something different happens when you have more permissions than I have. Really, I want to be able to do this. But if I am not allowed, I at least want to know why!
| summary: |
- Cannot create public image or update image to public + Provide more details about image visibility updates and creation errors |
| tags: | added: error-reporting |
| Changed in horizon: | |
| status: | New → Confirmed |
Just to clarify, I think the UI should access the 403 response provided by the glance API and let the user know they are being denied with a 403 and given the error message from glance which is "403 Forbidden You are not authorized to complete publicize_image action. (HTTP 403)" because otherwise the UI user would have no idea whats going on.
Perhaps it could even include information that it was talking to glance, because the user may not have any insight on the fact that this action uses glance, so they could indicate to their administrator that the glance configuration is blocking them from this action.