Browse Source

Merge "Validate user access to vip_subnet_id when creating a LB" into stable/train

changes/65/792965/1
Zuul 3 weeks ago
committed by Gerrit Code Review
parent
commit
2e46984202
2 changed files with 6 additions and 1 deletions
  1. +1
    -1
      octavia/api/v2/controllers/load_balancer.py
  2. +5
    -0
      releasenotes/notes/validate-access-to-vip_subnet_id-48fc92b45529cafd.yaml

+ 1
- 1
octavia/api/v2/controllers/load_balancer.py View File

@ -264,7 +264,7 @@ class LoadBalancersController(base.BaseController):
# Validate just the subnet id
elif load_balancer.vip_subnet_id:
subnet = validate.subnet_exists(
subnet_id=load_balancer.vip_subnet_id)
subnet_id=load_balancer.vip_subnet_id, context=context)
load_balancer.vip_network_id = subnet.network_id
if load_balancer.vip_qos_policy_id:
validate.qos_policy_exists(


+ 5
- 0
releasenotes/notes/validate-access-to-vip_subnet_id-48fc92b45529cafd.yaml View File

@ -0,0 +1,5 @@
---
fixes:
- |
Fix a bug that allowed a user to create a load balancer on a
``vip_subnet_id`` that belongs to another user using the subnet UUID.

Loading…
Cancel
Save