Comment 15 for bug 2019960

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (master)

Reviewed: https://review.opendev.org/c/openstack/neutron/+/883907
Committed: https://opendev.org/openstack/neutron/commit/e066cab875bef07308dc91a163ae03f82006d97f
Submitter: "Zuul (22348)"
Branch: master

commit e066cab875bef07308dc91a163ae03f82006d97f
Author: Rodolfo Alonso Hernandez <email address hidden>
Date: Mon May 22 21:21:17 2023 +0200

    Add a new extension "security-groups-rules-belongs-to-default-sg"

    This new extension adds a new synthetic field, "belongs_to_default_sg",
    to the security group rule OVO. This read only boolean field determines
    if the security group rule belongs to a default security group or not.

    This new field will be used in a new set of policy rules. By default,
    these new rules will allow to create and delete security group rules
    into the default security group of a project only to the admin user

    NOTE: the follow-up patch will introduce the policy rules check,
          during the creation/deletion operations, of the
          "belongs_to_default_sg" field and the user executing this action.

    Partial-Bug: #2019960

    Change-Id: I0b3ded52e1ff8160c5804c59635c0fd34ce9995b