x/vmware-nsx
Code Issues Proposed changes

Add log statements for policy check failures

Browse Source 
Misconfiguration of the policy.json file may
cause policy check failures. It's kind to the
developer to log the underlying exception
so that he/she can have more information as to
how to address the problem.

Closes bug: #1246139

Change-Id: I8664959cb98b3a41d159db3acb91da9baba810ae
This commit is contained in:
armando-migliaccio
2013-10-29 18:20:53 -07:00
parent fd952c9fbe
commit 1ad5fc8493
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
neutron/policy.py
View File

@@ -370,13 +370,16 @@ def enforce(context, action, target, plugin=None):
:param plugin: currently unused and deprecated. :param plugin: currently unused and deprecated.
Kept for backward compatibility. Kept for backward compatibility.
:raises neutron.exceptions.PolicyNotAllowed: if verification fails. :raises neutron.exceptions.PolicyNotAuthorized: if verification fails.
""" """
init() init()
rule, target, credentials = _prepare_check(context, action, target) rule, target, credentials = _prepare_check(context, action, target)
return policy.check(rule, target, credentials, result = policy.check(rule, target, credentials, action=action)
exc=exceptions.PolicyNotAuthorized, action=action) if not result:
LOG.debug(_("Failed policy check for '%s'"), action)
raise exceptions.PolicyNotAuthorized(action=action)
return result
def check_is_admin(context): def check_is_admin(context):