openstack/monasca-api
Code Issues Proposed changes

Merge "Set proper default agent authorized role"

Browse Source
This commit is contained in:
Zuul
2018-11-20 11:41:55 +00:00
committed by Gerrit Code Review
parent a9bb2c9652 856a969da3
commit bc6ba3b303
3 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
monasca_api/conf/security.py
View File

@@ -25,7 +25,7 @@ security_opts = [
help=''' help='''
Roles that are allowed full access to the API Roles that are allowed full access to the API
'''), '''),
cfg.ListOpt('agent_authorized_roles', default=['agent'], cfg.ListOpt('agent_authorized_roles', default=['monasca-agent'],
help=''' help='''
Roles that are only allowed to POST to the API Roles that are only allowed to POST to the API
'''), '''),

2
monasca_api/tests/test_policy.py
View File

@@ -155,7 +155,7 @@ class TestPolicyCase(base.BaseTestCase):
class RegisteredPoliciesTestCase(base.BaseTestCase): class RegisteredPoliciesTestCase(base.BaseTestCase):
def __init__(self, *args, **kwds): def __init__(self, *args, **kwds):
super(RegisteredPoliciesTestCase, self).__init__(*args, **kwds) super(RegisteredPoliciesTestCase, self).__init__(*args, **kwds)
self.agent_roles = ['agent'] self.agent_roles = ['monasca-agent']
self.readonly_roles = ['monasca-read-only-user'] self.readonly_roles = ['monasca-read-only-user']
self.default_roles = ['monasca-user'] self.default_roles = ['monasca-user']
self.delegate_roles = ['admin'] self.delegate_roles = ['admin']

6
releasenotes/notes/oslo-policy-345ff286820badc6.yaml Normal file
View File

@@ -0,0 +1,6 @@
---
upgrade:
- |
``agent_authorized_roles`` default value changed to ``monasca-agent`` to be
consistent with rest of Monasca, was configured by default to ``agent`` so
old policy configuration should be checked and adjusted accordingly.