neutron

Updation of shared firewall-policy with non shared firewall-rule should be restricted

Bug #1699706 reported by Puneet Arora on 2017-06-22

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	neutron	In Progress	Undecided	Unassigned

Bug Description

Using horizon I am able to update/edit shared firewall policy with non-shared firewall-rule which is oppose to behavior when we create firewall-policy of shared mode with firewall-rules of non-shared mode. Because during creation of firewall policy if we create firewall policy with shared mode and add firewall rule which is non-shared then exception raises.
But during updation of firewall policy which is of shared mode with non-shared firewall rule then doesn't raises any exception. This behavior should be restricted.

Steps:-
1) Login to horizon.
2) Goto Project->Network->Firewalls
3) Create firewall rule with non-shared mode:
e.g: Firewall-rule-1: UDP Allow (Non-shared)

4) Create firewall-policy with shared mode (e.g.: Firewall-policy-1 ) and try to add "Firewall-rule-1" to this policy then exception raises "Operation cannot be performed since Firewall Policy 41995c30-159a-4d18-891e-1bd5cf9e9aef is shared but Firewall Rule fdd19e89-062c-467e-b689-0a07f839663e is not shared"

5) Now again create firewall-policy with shared mode and without any firewall-rule.
6) Edit firewall policy and try to insert firewall-rule created in step3. Now it succeed. This should also be restricted.

Tags:

Puneet Arora (apuneet) on 2017-06-22

Changed in python-neutronclient:
status:	New → Opinion

Reedip (reedip-banerjee-deactivatedaccount) on 2017-06-22

Changed in python-neutronclient:
assignee:	nobody → Reedip (reedip-banerjee)

Jakub Libosvar (libosvar) on 2017-06-22

affects:	python-neutronclient → neutron
tags:	added: lbaas

Reedip (reedip-banerjee-deactivatedaccount) on 2017-06-26

tags:

added: fwaas
removed: lbaas

Reedip (reedip-banerjee-deactivatedaccount) on 2017-07-23

Changed in neutron:
status:	Opinion → Confirmed