Neutron list operations in non-admin context always return only resources owned by the tenant which submits the request (the one the token belongs to). Are you observing a tenant being able to see other tenants' resources?
Only administrators have global visibility. To scope visibility to a single tenant when submitting a list request in admin context, you can use the tenant_id query parameter (--tenant_id on the CLI).
I am not sure what "perimeter of data" refers to. I've assumed it refers to the whole list of returned data.
Neutron list operations in non-admin context always return only resources owned by the tenant which submits the request (the one the token belongs to). Are you observing a tenant being able to see other tenants' resources?
Only administrators have global visibility. To scope visibility to a single tenant when submitting a list request in admin context, you can use the tenant_id query parameter (--tenant_id on the CLI).
I am not sure what "perimeter of data" refers to. I've assumed it refers to the whole list of returned data.