openstack
/
glance
Code Issues Proposed changes
glance/glance/api
History
Eoghan Glynn cc938e25f3 Use RBAC policy to determine if context is admin. 
Fixes bug 1152716

If the context roles do not match the configured admin_role,
fall back to determining if admin via the "context_is_admin"
RBAC policy rule (for consistency with the approach used by
the other projects).

Note this requires that the "context_is_admin" rule *must*
be set in the policy.json if the out-of-the-box default rule
is used (as this default is so open, the net effect of omitting
the "context_is_admin" rule is for every request to acquire
admin status).

Change-Id: Ide2cf604b48f24bd759ce2d65091ff546cd9d22e
 		2013-05-02 16:40:24 +01:00
..
middleware Use RBAC policy to determine if context is admin. 2013-05-02 16:40:24 +01:00
v1 Create package for registry's client 2013-05-01 22:34:17 +02:00
v2 Merge "fixes use the fact that empty sequences are false" 2013-03-27 22:10:07 +00:00
__init__.py Use oslo-config-2013.1b3 2013-02-19 10:19:36 +00:00
authorization.py Update acls in the domain model 2013-03-05 08:47:07 -08:00
cached_images.py Standardize logger instantiation 2012-06-25 08:27:08 -07:00
common.py Standardize on newer except syntax 2013-03-26 12:14:55 +00:00
policy.py Use RBAC policy to determine if context is admin. 2013-05-02 16:40:24 +01:00
versions.py Publish API version 2.1 2013-03-12 16:23:03 -07:00