[Impact]
Non-admin users are not allowed to change the name of a network using the OpenStack Dashboard GUI
[Test Case]
1. Deploy trusty-mitaka or xenial-mitaka OpenStack Cloud
2. Create demo project
3. Create demo user
4. Log into OpenStack Dashboard using demo user
5. Go to Project -> Network and create a network
6. Go to Project -> Network and Edit the just created network
7. Change the name and click Save
8. Observe that your request is denied with an error message
[Regression Potential]
Minimal.
We are adding a patch already merged into upstream stable/mitaka for the horizon call to policy_check before sending request to Neutron when updating networks.
The addition of rule "update_network:shared" to horizon's copy of Neutron policy.json is our own due to upstream not willing to back-port this required change. This rule is not referenced anywhere else in the code base so it will not affect other policy_check calls.
[Impact]
Non-admin users are not allowed to change the name of a network using the OpenStack Dashboard GUI
[Test Case]
1. Deploy trusty-mitaka or xenial-mitaka OpenStack Cloud
2. Create demo project
3. Create demo user
4. Log into OpenStack Dashboard using demo user
5. Go to Project -> Network and create a network
6. Go to Project -> Network and Edit the just created network
7. Change the name and click Save
8. Observe that your request is denied with an error message
[Regression Potential]
Minimal.
We are adding a patch already merged into upstream stable/mitaka for the horizon call to policy_check before sending request to Neutron when updating networks.
The addition of rule "update_ network: shared" to horizon's copy of Neutron policy.json is our own due to upstream not willing to back-port this required change. This rule is not referenced anywhere else in the code base so it will not affect other policy_check calls.