yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #26519
[Bug 1406253] [NEW] Updating default security group from non-admin user should raise error
Public bug reported:
Trying to update default security group from a non-admin user should
raise an error but the operation succeeds normally. The code should be
updated so that it raise a conflict while updating default security
group from a non-admin user.
Steps to replicate (Running commands from a non-admin user) :-
1. $ neutron security-group-list
+--------------------------------------+---------+-----------------------------------------+
| Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | Default Security Group |
+--------------------------------------+---------+-----------------------------------------+
2. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
+--------------------------------------+---------+-----------------------------------------+
| Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | test |
+--------------------------------------+---------+-----------------------------------------+
Hence, a non-admin user is able to update the default security group.
Expected Result :-
3. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
Conflict (HTTP 409) (Request-ID: req-13b287c5-8ef9-4414-8263-c0c5feee9071)
** Affects: neutron
Importance: Undecided
Assignee: Abhishek Talwar (abhishek-talwar)
Status: New
** Changed in: neutron
Assignee: (unassigned) => Abhishek Talwar (abhishek-talwar)
** Description changed:
Trying to update default security group from a non-admin user should
raise an error but the operation succeeds normally. The code should be
- updated so that it raises a conflict while updating default security
+ updated so that it raise a conflict while updating default security
group from a non-admin user.
Steps to replicate (Running commands from a non-admin user) :-
1. $ neutron security-group-list
+--------------------------------------+---------+-----------------------------------------+
- | Id | Name | Description |
+ | Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | Default Security Group |
+--------------------------------------+---------+-----------------------------------------+
2. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
+--------------------------------------+---------+-----------------------------------------+
- | Id | Name | Description |
+ | Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | test |
+--------------------------------------+---------+-----------------------------------------+
Hence, a non-admin user is able to update the default security group.
Expected Result :-
3. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
Conflict (HTTP 409) (Request-ID: req-13b287c5-8ef9-4414-8263-c0c5feee9071)
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1406253
Title:
Updating default security group from non-admin user should raise error
Status in OpenStack Neutron (virtual network service):
New
Bug description:
Trying to update default security group from a non-admin user should
raise an error but the operation succeeds normally. The code should be
updated so that it raise a conflict while updating default security
group from a non-admin user.
Steps to replicate (Running commands from a non-admin user) :-
1. $ neutron security-group-list
+--------------------------------------+---------+-----------------------------------------+
| Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | Default Security Group |
+--------------------------------------+---------+-----------------------------------------+
2. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
+--------------------------------------+---------+-----------------------------------------+
| Id | Name | Description |
+--------------------------------------+---------+------------------------------------------+
| 8465d644-cc78-47c6-a699-e14a11ad9f21 | default | test |
+--------------------------------------+---------+-----------------------------------------+
Hence, a non-admin user is able to update the default security group.
Expected Result :-
3. $ neutron security-group-update 8465d644-cc78-47c6-a699-e14a11ad9f21 --description test
Conflict (HTTP 409) (Request-ID: req-13b287c5-8ef9-4414-8263-c0c5feee9071)
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1406253/+subscriptions
Follow ups
References
