openstack
/
neutron
Code Issues Proposed changes
neutron/neutron/conf
History
Slawek Kaplonski 428f7a8418 [S-RBAC] Add service role in neutron policy 
RBAC community wide goal phase-2[1] is to add service
role for the service APIs policy rule.
This patch adds new "service_api" role in policies, deprecates old rule
"context_is_advsvc" as this had basically same goal but for consistency
reasons we want now to have it named "service_api" as in other policies
for other projects.
This patch also adds unit tests to ensure what is allowed and what is
forbidden for the service role user.

[1] https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#phase-2

Closes-Bug: #2026182

Change-Id: Iaa1a3a491d310c2304f6500c6e5d2b9c31a72fa8
 		2023-10-06 07:55:05 +00:00
..
agent Add max limit to agent_down_time 2023-08-08 10:06:29 +10:00
db Add extra router attributes for ECMP and BFD 2023-07-25 17:03:34 +02:00
extensions Fix a number of configuration typos 2023-03-22 18:35:43 -04:00
plugins Merge "Add host metadata haproxy manager" 2023-05-15 17:37:10 +00:00
policies [S-RBAC] Add service role in neutron policy 2023-10-06 07:55:05 +00:00
services Fix a number of configuration typos 2023-03-22 18:35:43 -04:00
__init__.py Refactoring config options for quota 2016-05-11 09:15:38 -05:00
common.py Add new DEFAULT option named "my_ipv6" 2023-07-07 10:21:53 -04:00
experimental.py Mark "ipv6_pd_enabled" as deprecated and experimental. 2023-05-09 11:06:24 +00:00
profiling.py Add profiler decorator to Neutron 2019-10-31 10:05:01 -05:00
quota.py Fix a number of configuration typos 2023-03-22 18:35:43 -04:00
service.py Fix a number of configuration typos 2023-03-22 18:35:43 -04:00
wsgi.py Refactoring config options for wsgi opts 2016-08-03 19:49:58 +00:00