Expand ACL testing

Bug #1646878 reported by Nicholas Skaggs
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
juju-ci-tools
Triaged
High
Unassigned

Bug Description

We need to cover all of the edge cases and other potential security risk scenarios to prevent things like privilege escalation, improper model access, and other bugs.

Let's add tests to cover

admin@local
-login
-logout
-administer controller
-register controller as an admin
-add/remove users
-remove admin privileges
-grant admin privileges

read-user
-attempt privilege escalation to a write or admin user

write-user
-attempt privilege escalation to an admin

external-user
-attempt to manipulate controller
-attempt to view/modify another model on controller
-auth token manipulation

Curtis Hovey (sinzui)
Changed in juju-ci-tools:
status: New → Triaged
importance: Undecided → High
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.