From e9a2f9034c0d5ff6a39416ffc623464f8922a6ca Mon Sep 17 00:00:00 2001 From: Elena Ezhova Date: Wed, 9 Jul 2014 20:10:17 +0400 Subject: [PATCH] Add rule for updating network's router:external attribute Set admin_only rule for update_network:router:external in policy.json Also, change the default value of router:external from attr.ATTR_NOT_SPECIFIED to False, because each time we try to get or update a network the dict with its attributes is extended by _extend_network_dict_l3 function which adds router:external=False to the dict if this attribute is not specified. Thus, if the default value is not specified, router:external is considered to be updated in any case and the policy rule is applied. Change-Id: I899d98c7d8c9d9863ac5d8f992b6a2d507ec4482 Closes-Bug: 1338880 --- etc/policy.json | 1 + 1 file changed, 1 insertion(+) diff --git a/etc/policy.json b/etc/policy.json index 81fe4955..d21427cb 100644 --- a/etc/policy.json +++ b/etc/policy.json @@ -39,6 +39,7 @@ "update_network:provider:network_type": "rule:admin_only", "update_network:provider:physical_network": "rule:admin_only", "update_network:provider:segmentation_id": "rule:admin_only", + "update_network:router:external": "rule:admin_only", "delete_network": "rule:admin_or_owner", "create_port": "",