← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #16204

[Bug 1329864] [NEW] Owner role is broken in default v2 policy file

  Thread PreviousDate PreviousThread Next 
Public bug reported:

In v2 policy.json  owner is defined as
  "owner" : "user_id:%(user_id)s",


It should be 
  "owner" : "user_id:%(user_id)s or user_id:%(target.token.user_id)s",


Affected APIs,
   Using default v2 policy file a user can't delete his own token due to this defect

** Affects: keystone
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1329864

Title:
  Owner role is broken in default v2 policy file

Status in OpenStack Identity (Keystone):
  New

Bug description:
  In v2 policy.json  owner is defined as
    "owner" : "user_id:%(user_id)s",

  
  It should be 
    "owner" : "user_id:%(user_id)s or user_id:%(target.token.user_id)s",

  
  Affected APIs,
     Using default v2 policy file a user can't delete his own token due to this defect

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1329864/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next