Cannot delete resources in remote services once project is deleted
Bug #1476264 reported by
Adam Young
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Invalid
|
High
|
Adam Young |
Bug Description
Steps to reproduce:
Create project
Assign non-admin role to user
As non-admin user Go to Glance and create image
As admin Delete project
As non-admin, cannot delete image
If policy requires as scoped token, even admin cannot delete the image.
This has the effect of forcing "admin somewhere is admin everywhere"
To post a comment you must log in.
This is one reason we have not yet closed
https:/ /bugs.launchpad .net/keystone/ +bug/968696