OpenStack Networking (Neutron)

Go to file

Rodolfo Alonso Hernandez 093b861bb4 Filter by owner SGs when retrieving the SG rules Retrieving the SG rules now is used the admin context. This allows to get all possible rules, independently of the user calling. The filters passed and the RBAC policies filter those results, returning only: - The SG rules belonging to the user. - The SG rules belonging to a SG owned by the user. However, if the SG list is too long, the query can take a lot of time. Instead of this, the filtering is done in the DB query. If no filters are passed to "get_security_group_rules" and the context is not the admin context, only the rules specified in the first paragraph will be retrieved. Because overwriting the method "get_objects" is too complex, an intermediate query is done to retrieve the SG rule IDs. Those IDs will be used as a filter in the "get_objects" call. Conflicts: neutron/objects/securitygroup.py neutron/tests/unit/db/test_securitygroups_db.py neutron/tests/unit/objects/test_securitygroup.py Closes-Bug: #1863201 Change-Id: I25d3da929f8d0b6ee15d7b90ec59b9d58a4ae6a5 (cherry picked from commit `d874c46bff`) (cherry picked from commit `d3905264b7`) (cherry picked from commit `61dc621c1b`)		2020-04-17 11:05:53 +00:00
api-ref	Fix some typos	2016-06-28 22:46:19 +02:00
bin	Use os-xenapi for neutron when XenServer as hypervisor	2017-03-30 18:33:37 +00:00
devstack	DevStack: OVS: Only install kernel-* packages when needed	2018-11-23 10:23:12 +00:00
doc	Add VLAN type conntrack direct flow	2020-02-25 07:28:12 +08:00
etc	List SG rules which belongs to tenant's SG	2020-02-17 12:28:08 +01:00
neutron	Filter by owner SGs when retrieving the SG rules	2020-04-17 11:05:53 +00:00
playbooks/legacy	OpenDev Migration Patch	2019-04-19 19:38:53 +00:00
rally-jobs	Switch rally job from q-* to neutron-* service names	2018-01-09 12:12:48 -08:00
releasenotes	Remove Floating IP DNS record upon associated port deletion	2020-04-07 20:15:50 +00:00
tools	Disable IPv6 forwarding by default on HA routers	2018-06-03 19:10:40 +00:00
.coveragerc	Cleanup coverage configuration	2016-10-17 17:06:19 +05:30
.gitignore	Added zuulv3 jobs for testing neutron tempest plugin	2017-11-13 09:30:36 +05:30
.gitreview	OpenDev Migration Patch	2019-04-19 19:38:53 +00:00
.mailmap	Add mailmap entry	2014-05-16 13:40:04 -04:00
.pylintrc	Update pylint disable list to pass pylint 1.7.1 checks	2017-06-08 09:49:46 +00:00
.stestr.conf	Fix post gate hook to accommodate for new os-testr	2017-09-12 14:20:12 -06:00
.testr.conf	Allow more time for DB migration tests	2016-09-21 20:54:41 -04:00
.zuul.yaml	Remove experimental openSUSE 42.3 job	2019-08-19 21:26:25 +02:00
CONTRIBUTING.rst	Update link for contribution	2017-08-31 16:44:51 +02:00
HACKING.rst	Update the documentation link for doc migration	2017-07-22 18:46:13 +09:00
LICENSE	Adding Apache Version 2.0 license file. This is the official license agreement under which Quantum code is available to	2011-08-08 12:31:04 -07:00
README.rst	Correct tag link in README	2017-08-03 09:47:25 +08:00
TESTING.rst	Compile ovs for ovsfw to avoid ovs-vswitchd core dumps	2018-02-13 14:59:58 +00:00
babel.cfg	Use babel to generate translation file	2013-01-24 00:20:32 +08:00
bindep.txt	Add libffi-dev to bindep.txt	2017-06-13 19:26:49 +00:00
requirements.txt	metadata: use requests for comms with nova api	2019-06-14 08:16:35 +01:00
setup.cfg	Add enforcer logic for neutron policy	2019-04-08 16:31:37 +00:00
setup.py	Updated from global requirements	2017-03-04 11:19:58 +00:00
test-requirements.txt	cap bandit in test-requirements.txt	2018-08-25 23:04:56 +02:00
tox.ini	Ensure that fullstack job is run with python 2.7	2020-02-24 10:44:19 +01:00

README.rst

Team and repository tags

Welcome!

To learn more about neutron:

Documentation: https://docs.openstack.org

Features: https://specs.openstack.org/openstack/neutron-specs

Defects: https://launchpad.net/neutron

Get in touch via email. Use [Neutron] in your subject.

To learn how to contribute:

CONTRIBUTING.rst