OpenStack Networking (Neutron)

Go to file

Felipe Monteiro 41fe927c80 Add missing policy actions to policy.json file This patchset adds missing policy actions to the policy.json file for several reasons: 1) It signals to operators all the policy actions that are enforced in the system. With the governance spec [0] urging projects toward policy in code documentation, it makes sense to document all policy actions in the policy.json as Neutron doesn't have policy in code. 2) It is consistent with Neutron's policy enforcement documentation [1]: "For each attribute which has been explicitly specified in the request create a rule matching policy names in the form <operation>_<resource>:<attribute> rule" So it makes sense to capture each policy that is enforced, including all those with these special attributes. 3) Why include "update_router:external_gateway_info" but not "create_router:external_gateway_info"? This is inconsistent. 4) It makes it difficult to validate Neutron's policy via Patrole if the policies aren't contained in the policy.json -- how else is it possible to determine which policies to expect if they aren't documented anywhere? [0] https://governance.openstack.org/tc/goals/queens/policy-in-code.html [1] https://docs.openstack.org/neutron/pike/contributor/internals/policy.html#authorization-workflow Change-Id: I40f84134f0b56cfd574dfd69e5ebbf6a3fc2b3df		2018-07-18 02:17:16 +01:00
api-ref	Fix some typos	2016-06-28 22:46:19 +02:00
bin	Use os-xenapi for neutron when XenServer as hypervisor	2017-03-30 18:33:37 +00:00
devstack	trivial: Fix file permissions	2018-05-10 10:07:39 +00:00
doc	Merge "Add list of all working DSCP marks"	2018-07-17 11:45:09 +00:00
etc	Add missing policy actions to policy.json file	2018-07-18 02:17:16 +01:00
neutron	Add missing policy actions to policy.json file	2018-07-18 02:17:16 +01:00
playbooks/legacy	Replace ovsfw tempest job with iptables-hybrid tempest job	2018-06-03 11:14:03 +02:00
rally-jobs	[rally] Port custom plugins to use proper code	2018-05-18 00:25:35 +03:00
releasenotes	Merge "Pass network's dns_domain to dnsmasq conf"	2018-07-02 16:53:43 +00:00
tools	Merge "Switch to stestr"	2018-06-07 02:24:02 +00:00
.coveragerc	Cleanup coverage configuration	2016-10-17 17:06:19 +05:30
.gitignore	Switch to stestr	2018-06-02 13:03:33 +02:00
.gitreview	Fix .gitreview to not point at a branch	2015-08-17 13:51:51 -06:00
.mailmap	Add mailmap entry	2014-05-16 13:40:04 -04:00
.pylintrc	Update pylint disable list to pass pylint 1.7.1 checks	2017-06-08 09:49:46 +00:00
.stestr.conf	Fix post gate hook to accommodate for new os-testr	2017-09-12 14:20:12 -06:00
.zuul.yaml	Replace ovsfw tempest job with iptables-hybrid tempest job	2018-06-03 11:14:03 +02:00
CONTRIBUTING.rst	Update link for contribution	2017-08-31 16:44:51 +02:00
HACKING.rst	Update the documentation link for doc migration	2017-07-22 18:46:13 +09:00
LICENSE	Adding Apache Version 2.0 license file. This is the official license agreement under which Quantum code is available to	2011-08-08 12:31:04 -07:00
README.rst	Add release notes link in README	2018-07-10 15:40:00 +07:00
TESTING.rst	Fix bug to doc:testing	2018-06-08 11:22:41 +08:00
babel.cfg	Use babel to generate translation file	2013-01-24 00:20:32 +08:00
bindep.txt	Add libffi-dev to bindep.txt	2017-06-13 19:26:49 +00:00
lower-constraints.txt	Merge "Bump neutron-lib version to 1.17.0"	2018-07-14 16:35:36 +00:00
requirements.txt	Bump neutron-lib version to 1.17.0	2018-07-02 15:46:25 +00:00
setup.cfg	expose objects as entry points in setup.cfg	2018-05-24 09:49:03 -06:00
setup.py	Updated from global requirements	2017-03-04 11:19:58 +00:00
test-requirements.txt	Adopt hacking 1.1.0	2018-07-05 11:31:40 +09:00
tox.ini	Adopt hacking 1.1.0	2018-07-05 11:31:40 +09:00

README.rst

Team and repository tags

Welcome!

To learn more about neutron:

Documentation: https://docs.openstack.org

Features: https://specs.openstack.org/openstack/neutron-specs

Defects: https://launchpad.net/neutron

Release notes: https://docs.openstack.org/releasenotes/neutron/index.html

Get in touch via email. Use [Neutron] in your subject.

To learn how to contribute:

CONTRIBUTING.rst