neutron

  1. Bug #1996150
  2. Comment #10

Comment 10 for bug 1996150

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron-lib (stable/zed)

Reviewed: https://review.opendev.org/c/openstack/neutron-lib/+/874394
Committed: https://opendev.org/openstack/neutron-lib/commit/c40779d5522ed07c14a56f77ab2ad476537eff0f
Submitter: "Zuul (22348)"
Branch: stable/zed

commit c40779d5522ed07c14a56f77ab2ad476537eff0f
Author: Slawek Kaplonski <email address hidden>
Date: Thu Nov 10 16:05:11 2022 +0100

    Don't check context.system_scope to check project scope

    During first attempt of the Secure RBAC implementation [1] to
    function model_query_scope_is_project() there was added check
    which was checking if context.system_scope is "all" in case when
    scope enforcement was enabled. It was like that because that meant
    that it is SYSTEM_* persona context (e.g. SYSTEM_ADMIN).
    This is not needed now as later it was agreed to have only one ADMIN
    user which will still behave like old, "legacy" ADMIN user.

    [1] https://review.opendev.org/c/openstack/neutron-lib/+/781075

    Closes-bug: #1996150
    Change-Id: If3a97c4d3a0f4cb6b4d06434f74cbe9d933a07a4
    (cherry picked from commit 91759b17ea5d4d6563596612208e6014dee2ed88)