openstack
/
nova
Code Issues Proposed changes
nova/nova/api
History
Ghanshyam Mann 58701be615 Fix os-ips policy to be admin_or_owner 
os-ips API policy is default to admin_or_owner[1] but API
is allowed for everyone.

We can see the test trying with other project context can access the API
- https://review.opendev.org/#/c/715477

This is because API does not pass the server project_id in policy target[2]
and if no target is passed then, policy.py add the default targets which is
nothing but context.project_id (allow for everyone who try to access)[3]

This commit fix this policy by passing the server's project_id in policy
target.

Closes-bug: #1869396
[1] eaf08c0b7b/nova/policies/ips.py (L27)

Change-Id: Ie7bcb6537f90813cc5b23d69c886037d25b15a42
 		2020-03-28 20:56:46 -05:00
..
metadata Fix H702 pep8 error with latest hacking 2020-02-27 21:22:09 -06:00
openstack Fix os-ips policy to be admin_or_owner 2020-03-28 20:56:46 -05:00
validation Fix duplicated words issue like "during during boot time" 2020-01-06 14:19:03 +08:00
__init__.py
auth.py Stop using NoAuthMiddleware in tests 2019-10-14 11:43:52 -05:00
compute_req_id.py Migrate to oslo request_id middleware - mv 2.46 2017-05-27 10:11:44 +00:00
wsgi.py api: Remove 'Debug' middleware 2019-09-27 15:27:30 +01:00