commit dbb7dd03fea68120ef5ac9bbb1b3f184e3f2eacc
Author: Andrew Laski <email address hidden>
Date: Wed Apr 9 09:27:44 2014 -0400
Add RBAC policy for ec2 API security groups calls
The revoke_security_group_ingress, revoke_security_group_ingress, and
delete_security_group calls in the ec2 API were not restricted by policy
checks. This prevented a deployer from restricting their usage via
roles or other checks. Checks have been added for these calls.
Based on commit d4056f8723cc6cefb28ff6e5a7c0df5ea77f82ef but modified
for the backport.
Reviewed: https:/ /review. openstack. org/86361 /git.openstack. org/cgit/ openstack/ nova/commit/ ?id=dbb7dd03fea 68120ef5ac9bbb1 b3f184e3f2eacc
Committed: https:/
Submitter: Jenkins
Branch: stable/havana
commit dbb7dd03fea6812 0ef5ac9bbb1b3f1 84e3f2eacc
Author: Andrew Laski <email address hidden>
Date: Wed Apr 9 09:27:44 2014 -0400
Add RBAC policy for ec2 API security groups calls
The revoke_ security_ group_ingress, revoke_ security_ group_ingress, and security_ group calls in the ec2 API were not restricted by policy
delete_
checks. This prevented a deployer from restricting their usage via
roles or other checks. Checks have been added for these calls.
Based on commit d4056f8723cc6ce fb28ff6e5a7c0df 5ea77f82ef but modified
for the backport.
Closes-Bug: #1290537 2216b429d34db73 5823e0a6189
Change-Id: I4bf681bedd68ed