Bug 2209607

Summary:	When a user tries to delete a non existing access rule, it deletes by accident another existing access rule in it's scope
Product:	Red Hat OpenStack	Reporter:	MilanaLevy <millevy>
Component:	openstack-keystone	Assignee:	Douglas Mendizábal <dmendiza>
Status:	POST ---	QA Contact:	Jeremy Agee <jagee>
Severity:	medium	Docs Contact:
Priority:	medium
Version:	17.1 (Wallaby)	CC:	dmendiza, dwilde, oblaut
Target Milestone:	z2	Keywords:	Triaged
Target Release:	17.1	Flags:	ifrangs: needinfo? (dmendiza)
Hardware:	Unspecified
OS:	Unspecified
Whiteboard:
Fixed In Version:		Doc Type:	If docs needed, set a value
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:		Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:

Description MilanaLevy 2023-05-24 08:38:23 UTC

Description of problem:
When a user tries to delete a non existing access rule under it's scope, it deletes by accident it's other existing access rule which are not associated with any application credentials, under his scope.

Version-Release number of selected component (if applicable):
Reproducible in 17.0 and in 17.1.

How reproducible:


Steps to Reproduce:
1.Create a user or use the default admin role
2.Create an application credentials with access rule.
3.Delete the application credentials, not the access rule.
4.List the access rule - It should be found there.
5.Try to delete access rule with a random name.
6.List again the access rule and see if it still there.

Actual results:
The access rule was deleted , although the request didn't requested to delete it.

Expected results:
The access rule should still appear in the list.

Additional info: