Policy checking fails against non-strings
Bug #1039132 reported by
Vish Ishaya
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-common |
Fix Released
|
Undecided
|
Vish Ishaya |
Bug Description
The generic checking in policy allows us to match against data from the creds_dict using a very simple syntax. For example, in policy.json if you had something like:
"some_action": [["project_
it would only allow project foo to perform that action, but something like:
"some_action": [["is_admin:True"]]
where is_admin is a boolean fails.
Changed in openstack-common: | |
status: | New → In Progress |
assignee: | nobody → Vish Ishaya (vishvananda) |
Changed in openstack-common: | |
milestone: | none → 2012.2 |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/11657
Review: https:/