Glance policy is too relaxed
Bug #1408363 reported by
Ian Cordasco
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Fix Released
|
High
|
Ian Cordasco | ||
Icehouse |
Invalid
|
High
|
Ian Cordasco | ||
Juno |
Invalid
|
High
|
Ian Cordasco | ||
Kilo |
Fix Released
|
High
|
Ian Cordasco | ||
Trunk |
Fix Released
|
High
|
Ian Cordasco |
Bug Description
Per discussion on https:/
- publicize_image
- add_member
- delete_member
- modify_member
We probably don't want to restrict all of these policies to the admin role, but we probably do not want them unrestricted either.
I'm marking this private security even though the previous discussion was public.
Changed in openstack-ansible: | |
importance: | Undecided → Critical |
importance: | Critical → High |
assignee: | nobody → Ian Cordasco (icordasc) |
status: | New → In Progress |
information type: | Private → Public Security |
Changed in openstack-ansible: | |
status: | Fix Committed → In Progress |
To post a comment you must log in.
The proposal to trunk is https:/ /review. openstack. org/#/c/ 145550/