yahoo-eng-team team mailing list archive

[Brant Knudson <bknudson@xxxxxxxxxx>]

Public bug reported:


The function for getting or checking a role for trust (GET/HEAD /v3/OS-TRUST/trusts/{trust_id}/roles/{role_id}) winds up being protected first by `get_role_for_trust` and then by `check_role_for_trust`. This is because get_role_for_trust winds up calling self.check_role_for_trust()[1]. There's actually no external route for "check_role_for_trust", so this policy target should be removed.

[1]
http://git.openstack.org/cgit/openstack/keystone/tree/keystone/trust/controllers.py#n272

** Affects: keystone
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1421966

Title:
  Getting role for trust is double-protected

Status in OpenStack Identity (Keystone):
  New

Bug description:
  
  The function for getting or checking a role for trust (GET/HEAD /v3/OS-TRUST/trusts/{trust_id}/roles/{role_id}) winds up being protected first by `get_role_for_trust` and then by `check_role_for_trust`. This is because get_role_for_trust winds up calling self.check_role_for_trust()[1]. There's actually no external route for "check_role_for_trust", so this policy target should be removed.

  [1]
  http://git.openstack.org/cgit/openstack/keystone/tree/keystone/trust/controllers.py#n272

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1421966/+subscriptions