Policy defined for 'share' applies to 'security_service' also
Bug #1274951 reported by
Aleksandr Chirko
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Shared File Systems Service (Manila) |
Fix Released
|
High
|
Aleksandr Chirko |
Bug Description
If we define policy for share creation in the policy.json like that
"share:create": [["is_admin:True"]]
we will be unable to create share under 'demo' user:
$manila create nfs 1
ERROR: Policy doesn't allow share:create to be performed.
and that's expected.
But we also will be unable to create security service under 'demo' user:
$manila security-
ERROR: Policy doesn't allow share:create to be performed.
which is unexpected.
Changed in manila: | |
assignee: | nobody → Aleksandr Chirko (achirko) |
Changed in manila: | |
importance: | Undecided → High |
Changed in manila: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/70375
Review: https:/