Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1538048

Summary: project admins should be able to create and delete networkpolicies in their own project
Product: OpenShift Container Platform Reporter: Hongan Li <hongli>
Component: NetworkingAssignee: Dan Winship <danw>
Status: CLOSED ERRATA QA Contact: Meng Bo <bmeng>
Severity: medium Docs Contact:
Priority: medium    
Version: 3.9.0CC: aos-bugs, bbennett
Target Milestone: ---Keywords: Regression
Target Release: 3.9.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
undefined
 Story Points: ---
Clone Of: Environment:
Last Closed: 2018-03-28 14:22:32 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Hongan Li 2018-01-24 11:00:23 UTC 
Description of problem:
project admins should create and delete networkpolicies in their own project, and this is allow from OCP 3.6, but it failed in latest OCP 3.9 build.

Version-Release number of selected component (if applicable):
openshift v3.9.0-0.23.0
kubernetes v1.9.1+a0ce1bc657
etcd 3.2.8

How reproducible:
always

Steps to Reproduce:
1. oc login -u hongli
2. oc new-project lha
3. oc create -f https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/networking/networkpolicy/defaultdeny-v1-semantic.yaml

Actual results:
Error from server (Forbidden): error when creating "https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/networking/networkpolicy/defaultdeny-v1-semantic.yaml": networkpolicies.extensions is forbidden: User "hongli" cannot create networkpolicies.extensions in the namespace "lha": User "hongli" cannot create networkpolicies.extensions in project "lha"


Expected results:
should succeed  

Additional info:
Comment 1 Dan Winship 2018-01-31 18:53:35 UTC 
https://github.com/openshift/origin/pull/18372
Comment 3 Hongan Li 2018-02-05 08:35:17 UTC 
verified in openshift v3.9.0-0.36.0 and issue has been fixed.
Comment 6 errata-xmlrpc 2018-03-28 14:22:32 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2018:0489