commit 96223931cae782a997271c17ea8092ed277d2db3
Author: Rodolfo Alonso Hernandez <email address hidden>
Date: Tue Oct 3 14:34:55 2023 +0000
Create a policy rule to control if a rule belongs to the default SG
The policy rule ``shared_security_group`` allows to create new policy
rules checking if a security group rule belongs or not to the project
default security group.
By default the behaviour has not changed. If an administrator wants
to prevent a non-privileged user from creating or deleting rules in the
default security group, the ``create_security_group_rule`` and
``delete_security_group_rule`` can be overriden. An example is provided
in the unit tests.
Reviewed: https:/ /review. opendev. org/c/openstack /neutron/ +/896222 /opendev. org/openstack/ neutron/ commit/ 96223931cae782a 997271c17ea8092 ed277d2db3
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 96223931cae782a 997271c17ea8092 ed277d2db3
Author: Rodolfo Alonso Hernandez <email address hidden>
Date: Tue Oct 3 14:34:55 2023 +0000
Create a policy rule to control if a rule belongs to the default SG
The policy rule ``shared_ security_ group`` allows to create new policy
rules checking if a security group rule belongs or not to the project
default security group.
By default the behaviour has not changed. If an administrator wants security_ group_rule` ` and security_ group_rule` ` can be overriden. An example is provided
to prevent a non-privileged user from creating or deleting rules in the
default security group, the ``create_
``delete_
in the unit tests.
Closes-Bug: #2019960
Change-Id: I6c90b61df0e726 ef07f177801069b af30c49de67