commit e066cab875bef07308dc91a163ae03f82006d97f
Author: Rodolfo Alonso Hernandez <email address hidden>
Date: Mon May 22 21:21:17 2023 +0200
Add a new extension "security-groups-rules-belongs-to-default-sg"
This new extension adds a new synthetic field, "belongs_to_default_sg",
to the security group rule OVO. This read only boolean field determines
if the security group rule belongs to a default security group or not.
This new field will be used in a new set of policy rules. By default,
these new rules will allow to create and delete security group rules
into the default security group of a project only to the admin user
NOTE: the follow-up patch will introduce the policy rules check,
during the creation/deletion operations, of the "belongs_to_default_sg" field and the user executing this action.
Reviewed: https:/ /review. opendev. org/c/openstack /neutron/ +/883907 /opendev. org/openstack/ neutron/ commit/ e066cab875bef07 308dc91a163ae03 f82006d97f
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit e066cab875bef07 308dc91a163ae03 f82006d97f
Author: Rodolfo Alonso Hernandez <email address hidden>
Date: Mon May 22 21:21:17 2023 +0200
Add a new extension "security- groups- rules-belongs- to-default- sg"
This new extension adds a new synthetic field, "belongs_ to_default_ sg",
to the security group rule OVO. This read only boolean field determines
if the security group rule belongs to a default security group or not.
This new field will be used in a new set of policy rules. By default,
these new rules will allow to create and delete security group rules
into the default security group of a project only to the admin user
NOTE: the follow-up patch will introduce the policy rules check,
"belongs_ to_default_ sg" field and the user executing this action.
during the creation/deletion operations, of the
Partial-Bug: #2019960
Change-Id: I0b3ded52e1ff81 60c5804c59635c0 fd34ce9995b