Comment 7 for bug 1365727
Revision history for this message
| Steven Hillman (sthillma) wrote Re: N1kv tenant able to create networks for non-shared network profiles of other N1kv tenants | #7 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
I think the wording of the commit comment is actually slightly misleading. Network profiles are N1KV specific concept. It isn't so much the case that we are restricting them to close a security vulnerability as we are restricting them to better support multi-tenant cases from the plugin side. We added the logic to limit the scope of network profiles to be per-tenant from the plugin perspective by default. Additionally we included the config option to give the user the ability to relax this constraint and share profiles among all tenants for a particular deployment (avoiding the need to manually assign all tenants to all profiles).