Policy violation didn't return 403
Bug #1046964 reported by
Nachi Ueno
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Invalid
|
Medium
|
Unassigned |
Bug Description
I set all policy to admin_only (ex. "create_network": [["rule:
Here is test result to access to the api with non-admin user.
Note non-admin user owns one network.
| API | Return Code | Memo|
| create network | 403 ||
|delete network|404||
|list network|200| Empty list returned |
|show network|404||
|update network|404||
| create subnet | 403 ||
|delete subnet|403||
|list subnet|200| Empty list returned |
|show subnet|404||
|update subnet|403||
| create port | 403 ||
|delete port|403||
|list port|200| Empty list returned |
|show port|404||
|update port|404||
This bug is related
https:/
To post a comment you must log in.
We should agree constant error code to fix this.
This is my proposal.
create -> 403
list
show -> 404 ( To hide another tenants entry)
delete
update