Addmodel ACL does not allow to grant access to other users
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Juju |
Fix Released
|
Critical
|
Horacio Durán |
Bug Description
Even though show-model states that users are model admins, they are not able to share the models with other users.
urulama@
Logged out. You are still logged into 10 controllers.
urulama@
uploading credential 'aws/uros-
Added 'test' model on aws/eu-central-1 with credential 'aws' for user 'uros-jovanovic'
urulama@
CONTROLLER: everyone2
MODEL OWNER STATUS ACCESS LAST CONNECTION
test* uros-jovanovic@
urulama@
ERROR permission denied (unauthorized access)
urulama@
test:
name: test
model-uuid: 5e7bc44c-
controller-uuid: 236dfb1c-
controller-name: everyone2
owner: uros-jovanovic@
cloud: aws
region: eu-central-1
type: ec2
life: alive
status:
current: available
since: 1 minute ago
users:
uros-
display-name: uros-jovanovic
access: admin
last-
Same for local users
urulama@
urulama@
urulama@
Logged out. You are still logged into 10 controllers.
urulama@
password:
You are now logged in to "everyone2" as "bob@local".
urulama@
uploading credential 'aws/bob@local/aws' to controller
Added 'test' model on aws/eu-central-1 with credential 'aws' for user 'bob'
urulama@
ERROR permission denied
urulama@
test:
name: test
model-uuid: 2c156109-
controller-uuid: 236dfb1c-
controller-name: everyone2
owner: bob@local
cloud: aws
region: eu-central-1
type: ec2
life: alive
status:
current: available
since: 2 minutes ago
users:
bob@local:
display-name: bob
access: admin
last-
Changed in juju: | |
milestone: | none → 2.0-beta16 |
assignee: | nobody → Horacio Durán (hduran-8) |
importance: | Undecided → Critical |
status: | New → Triaged |
Changed in juju: | |
milestone: | 2.0-beta16 → 2.0-beta17 |
Changed in juju: | |
status: | In Progress → Fix Committed |
Changed in juju: | |
status: | Fix Committed → Fix Released |
BTW, this is with "juju grant everyone@external addmodel" enabled.