From b43870e9ecbc81a1fbed9f248bb09cdf4f91cd75 Mon Sep 17 00:00:00 2001 From: Thomas Goirand Date: Thu, 1 Apr 2021 23:19:14 +0200 Subject: [PATCH] Allow to configure policy_dirs This patch makes it possible to override the current service default, which is /etc//policy.d . Change-Id: I6d88b86ecbeabdc0cdee6a6bbb0d45ea46a82a8c --- manifests/policy.pp | 8 +++++++- releasenotes/notes/policy-dirs-6f828a3a98b81a9f.yaml | 5 +++++ spec/classes/nova_policy_spec.rb | 2 ++ 3 files changed, 14 insertions(+), 1 deletion(-) create mode 100644 releasenotes/notes/policy-dirs-6f828a3a98b81a9f.yaml diff --git a/manifests/policy.pp b/manifests/policy.pp index bd6325a5f..f5b4cad3e 100644 --- a/manifests/policy.pp +++ b/manifests/policy.pp @@ -32,11 +32,16 @@ # (Optional) Path to the nova policy.yaml file # Defaults to /etc/nova/policy.yaml # +# [*policy_dirs*] +# (Optional) Path to the nova policy folder +# Defaults to $::os_service_default +# class nova::policy ( $enforce_scope = $::os_service_default, $enforce_new_defaults = $::os_service_default, $policies = {}, $policy_path = '/etc/nova/policy.yaml', + $policy_dirs = $::os_service_default, ) { include nova::deps @@ -56,7 +61,8 @@ class nova::policy ( oslo::policy { 'nova_config': enforce_scope => $enforce_scope, enforce_new_defaults => $enforce_new_defaults, - policy_file => $policy_path + policy_file => $policy_path, + policy_dirs => $policy_dirs, } } diff --git a/releasenotes/notes/policy-dirs-6f828a3a98b81a9f.yaml b/releasenotes/notes/policy-dirs-6f828a3a98b81a9f.yaml new file mode 100644 index 000000000..1c339f335 --- /dev/null +++ b/releasenotes/notes/policy-dirs-6f828a3a98b81a9f.yaml @@ -0,0 +1,5 @@ +--- +features: + - | + There is now a new policy_dirs parameter in the nova::policy class, + so one can set a custom path. diff --git a/spec/classes/nova_policy_spec.rb b/spec/classes/nova_policy_spec.rb index f882f3d93..17b271c19 100644 --- a/spec/classes/nova_policy_spec.rb +++ b/spec/classes/nova_policy_spec.rb @@ -7,6 +7,7 @@ describe 'nova::policy' do :enforce_scope => false, :enforce_new_defaults => false, :policy_path => '/etc/nova/policy.yaml', + :policy_dirs => '/etc/nova/policy.d', :policies => { 'context_is_admin' => { 'key' => 'context_is_admin', @@ -28,6 +29,7 @@ describe 'nova::policy' do :enforce_scope => false, :enforce_new_defaults => false, :policy_file => '/etc/nova/policy.yaml', + :policy_dirs => '/etc/nova/policy.d', ) end end