openstack
/
heat
Code Issues Proposed changes
heat/heat/policies
History
Lance Bragstad 93594c30ec Implement secure RBAC 
This commit updates default policies to account for system scope
and default roles. This is part of a broader change to provide a
consistent and secure authorization experience across OpenStack
projects.

- Introduces basic/reusable check strings in base.py
- Implements secure RBAC for build info API
- Implements secure RBAC for the action API
- Implements secure RBAC for cloud formations
- Implements secure RBAC for events
- Implements secure RBAC for the resource API
- Implements secure RBAC for the service API
- Implements secure RBAC for software configs
- Implements secure RBAC for software deployments
- Implements secure RBAC for stacks
- Adds unit tests for legacy and new secure-rbac policies.

Change-Id: Iff1e39481ea3b1f00bd89dba4a00aed30334ecec
 		2021-03-02 09:32:41 +05:30
..
__init__.py Remove CloudWatch API 2018-01-28 09:11:17 +05:30
actions.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
base.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
build_info.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
cloudformation.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
events.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
resource.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
resource_types.py New resource OS::Neutron::QoSMinimumBandwidthRule 2020-04-27 17:00:24 +08:00
service.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
software_configs.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
software_deployments.py Implement secure RBAC 2021-03-02 09:32:41 +05:30
stacks.py Implement secure RBAC 2021-03-02 09:32:41 +05:30