Bug 1041158

Summary: [RFE][nova]: Integrate the policy.json wrappers more tightly with the ec2 code
Product: Red Hat OpenStack Reporter: RHOS Integration <rhos-integ>
Component: RFEsAssignee: RHOS Maint <rhos-maint>
Status: CLOSED UPSTREAM QA Contact:
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: unspecifiedCC: markmc, yeylon
Target Milestone: ---Keywords: FutureFeature
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
URL: https://blueprints.launchpad.net/nova/+spec/ec2-policy-integration
Whiteboard: upstream_milestone_none upstream_status_good-progress upstream_definition_obsolete
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-03-19 17:09:23 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description RHOS Integration 2013-12-12 13:49:00 UTC 
Cloned from launchpad blueprint https://blueprints.launchpad.net/nova/+spec/ec2-policy-integration.

Description:

Right now the policy.json is attached to lower levels of the openstack code, which means that if a api/function is restricted the top level ec2 api may partially complete and then hit a function that is restricted (no rollback will happen). It would be better instead to integrate the policy wrappers at the ec2 level so that this kind of activity would not happen and more useful error messages could be reported.

Specification URL (additional information):

None