Comment 0 for bug 1042037
Revision history for this message
| dan wendlandt (danwent) wrote verify network + subnet ownership for L3 API calls | #0 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0f7b58d
(Get the code!)
- ownership checks on "action" API calls? Policy may take care of this automatically for making sure the user owns the router or is admin. Also need to make sure we check that subnet is owned by that tenant or that user is admin.
- permissions checks for network_id used to create floating ip, or used in gateway config on a router.