yahoo-eng-team team mailing list archive

[Bernard Cafarelli <1996528@xxxxxxxxxxxxxxxxxx>]

After checking on IRC [0], this is working as designed on the keystone side, regular users aren't allowed to list projects
As this is the way used to find the project ID, this is why non-admin users get an empty list

[0] https://meetings.opendev.org/irclogs/%23openstack-
neutron/%23openstack-neutron.2022-11-15.log.html#t2022-11-15T14:53:04

** Changed in: neutron
       Status: New => Won't Fix

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1996528

Title:
  No output for "openstack port list  --project project_name" in case of
  non-admin user

Status in neutron:
  Won't Fix

Bug description:
  Bug
  ====
  openstack port list --project project_id command works for both admin and non-admin users.
  openstack port list --project project_name command works for only admin users.

  
  Expected behavior
  ==================
  openstack port list --project project_name command should work for both admin and non-admin users.

  Steps to reproduce
  ===================
  1. source openrc admin admin
  2. openstack port list --project <project_id_or_name>    [this works]
  3, source openrc demo demo
  4. openstack port list --project <project_id>  [this works]
  5. openstack port list --project <project_name>  [No output]

  On running with --debug flag, seems like non-admin(i.e. demo) users
  don't have authorization to list projects and so name resolution from
  project_name to project_id fails. The query forwarded to neutron with
  project_name instead of project_id. The neutron then filters DB using
  {project_id: project_name} and query returns empty result.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1996528/+subscriptions