Context.elevated() method sets all required roles for context object
If context should be elevated, it should always have "admin", "member"
and "reader" roles set as admin user always have "member" and "reader"
role as well.
Usually, when context is created by keystone it is like that but in some
cases, e.g. when noauth middleware is used instead of keystone it's not
like that and then context from the environment don't have any role set
so we should make sure that elevated context have all required roles set
correctly.
Reviewed: https:/ /review. opendev. org/c/openstack /neutron- lib/+/883345 /opendev. org/openstack/ neutron- lib/commit/ c5ca1ddf420b827 e4684dee6a64954 75014a91e3
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit c5ca1ddf420b827 e4684dee6a64954 75014a91e3
Author: Slawek Kaplonski <email address hidden>
Date: Wed May 17 12:17:17 2023 +0200
Context. elevated( ) method sets all required roles for context object
If context should be elevated, it should always have "admin", "member"
and "reader" roles set as admin user always have "member" and "reader"
role as well.
Usually, when context is created by keystone it is like that but in some
cases, e.g. when noauth middleware is used instead of keystone it's not
like that and then context from the environment don't have any role set
so we should make sure that elevated context have all required roles set
correctly.
Closes-Bug: #2019946 4ffd63dc910b785 2fe75421fa9
Change-Id: Ic70202d1b41ea6