Policy for listing service providers requires admin
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Invalid
|
Medium
|
Unassigned |
Bug Description
When creating a v3 keystoneclient using non admin credentials I'm able to get the list of service providers from the service catalog, but the policy doesn't allow to list or get service providers by default.
>>> ksclient2.
[{u'sp_url': u'http://
>>> ksclient2.
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
File "/usr/local/
return super(ServicePr
File "/usr/local/
return f(*args, **new_kwargs)
File "/usr/local/
self.
File "/usr/local/
resp, body = self.client.
File "/usr/local/
return self.request(url, 'GET', **kwargs)
File "/usr/local/
resp = super(LegacyJso
File "/usr/local/
return self.session.
File "/usr/local/
return func(*args, **kwargs)
File "/usr/local/
raise exceptions.
keystoneauth1.
tags: | added: policy |
Changed in keystone: | |
status: | New → Triaged |
importance: | Undecided → Medium |
Changed in keystone: | |
assignee: | nobody → Kristi Nikolla (knikolla) |
Changed in keystone: | |
status: | Triaged → Invalid |
Fix proposed to branch: master /review. openstack. org/290020
Review: https:/