Currently Non-admin tenants can view quota of other tenants.
With this change we can restrict such actions by throwing exception
"Admin required". Added test_cases for the same.
Currently there is no validation for the url in the Curl Request.
With this change we can validate the URL and restrict such actions.
Added test_cases and made compatible for tempest.
Reviewed: https:/ /review. openstack. org/415235 /git.openstack. org/cgit/ openstack/ kingbird/ commit/ ?id=ef2c5de3a8b 3642ecf13a21715 bf288e30f47672
Committed: https:/
Submitter: Jenkins
Branch: master
commit ef2c5de3a8b3642 ecf13a21715bf28 8e30f47672
Author: Goutham Pratapa <email address hidden>
Date: Tue Dec 27 19:30:11 2016 +0530
Restrict & validate KB-tenants to view own quotas
Currently Non-admin tenants can view quota of other tenants.
With this change we can restrict such actions by throwing exception
"Admin required". Added test_cases for the same.
Currently there is no validation for the url in the Curl Request.
With this change we can validate the URL and restrict such actions.
Added test_cases and made compatible for tempest.
closes-bug: 1652747
closes-bug: 1654569
Change-Id: Ia27801e61004b1 aef6397db8f6bfa 183761949a4