openstack/barbican
Code Issues Proposed changes
2d405a8bfd
barbican/releasenotes/notes/use-secure-rbac-by-default-bae44e5c36451928.yaml
Douglas Mendizábal 6dcb00f8b9 Enable Secure RBAC by default 
This patch sets both `enforce_new_defaults` and `enforce_scope` to the
default value of `True` as the next step in the implementation of Secure
RBAC [1].

[1] https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html

Change-Id: I935cb34877c8edf62f33f1ba1fe31c942780b3a0
2023-08-31 13:52:27 -05:00

8 lines
336 B
YAML
Raw Blame History

---
security:
- |
This release uses Secure RBAC by default (See: https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html )
To opt out of this change and continue using the legacy policies set
enforce_new_defaults=False and enforce_scope=False in the [oslo_policy]
section of barbican.conf.
View Git Blame Copy Permalink