7f7e1010ef
This is partial revert of 0ed626e146 .
After discussing several problems caused by scope separation, we
decided to suspend implementing the scope enforcement and focus on
project personas like reader role. As the result of that decision,
the system admin persona will be removed, thus we should use
the project admin persona instead. The previous policy rules to allow
system scope access have been reverted by [1].
This does not revert the original patch to keep the unit tests which
were hugely refactored by that change.
[1] 066e1e69d1394839a9f0bde4ca8c3a0db2d52396
Change-Id: I85847850602ab3526d2fdb1a56bb927183198825
10 lines
264 B
YAML
10 lines
264 B
YAML
---
|
|
upgrade:
|
|
The following resource types now use project scope credential instead of
|
|
system scope credential, following the change in Nova to retain legacy
|
|
project admin behavior.
|
|
|
|
- ``nova_aggregate``
|
|
- ``nova_flavor``
|
|
- ``nova_service``
|