969309ffae
From: https://review.openstack.org/#/c/309346/ " I investigated the behaviour of the policy file when various policies are removed. A completely empty policy file will return a 403 Forbidden. As the user will not match with any of the policies. However, because glance has the policy ``default: ""``. It means that any policy that is not explicitly stated in the the policy.json, is by default usable by any member. I think that the ``default`` option is a potentially bad thing to have in the policy.json file, due to the ability to give permissions without explicitly stating it. " Therefore we should change ``"default": "",`` to ``"default": "role:admin",``. To make sure that members don't inherit policies that they shouldn't in the future. From a operators perspective it should be more secure to have an opt-in rather than opt-out. Change-Id: I57f9d4791126360079a941c1ff4cb2bbb86298d5 Closes-Bug: 1593177 |
||
|---|---|---|
| .. | ||
| .placeholder | ||
| bug-1537903-54b2822eac6cfc09.yaml | ||
| bug-1593177-8ef35458d29ec93c.yaml | ||
| deprecate-glance-api-opts-23bdbd1ad7625999.yaml | ||
| make-task-api-admin-only-by-default-7def996262e18f7a.yaml | ||
| new_image_filters-c888361e6ecf495c.yaml | ||
| Prevent-removing-last-image-location-d5ee3e00efe14f34.yaml | ||
| remove-osprofiler-paste-ini-options-c620dedc8f9728ff.yaml | ||
| soft_delete-tasks-43ea983695faa565.yaml | ||
| trust-support-registry-cfd17a6a9ab21d70.yaml | ||