Hacking check for _ENFORCER.enforce()

In order to ensure that only registered policies are used for authorization checks _ENFORCER.authorize should be used rather than _ENFORCER.enforce. This adds a check to look for instances of _ENFORCER.enforce being used. Change-Id: Iee78e93a3e1d4c6c30681b18698b7fc9cb6fa982 Implements: bp policy-in-code
2016-07-01 13:51:48 -04:00 · 2016-07-01 13:51:48 -04:00 · 61838f3390
commit 61838f3390
parent 9aa54e68ef
1 changed files with 1 additions and 0 deletions
--- a/HACKING.rst
+++ b/HACKING.rst
@ -61,6 +61,7 @@ Nova Specific Commandments
 - [N348] Deprecated library function os.popen()
 - [N349] Check for closures in tests which are not used
 - [N350] Policy registration should be in the central location ``nova/policies/``
+- [N351] Do not use the oslo_policy.policy.Enforcer.enforce() method.

 Creating Unit Tests
 -------------------