Red Hat Bugzilla – Bug 904730
network can be viewed/deleted by different tenants admin users
Last modified: 2013-02-12 11:49:05 EST
Created attachment 688377 [details]
Network lists/delete actions
Description of problem:
network list can be viewed/deleted by different tenants admin users.
I have created few tenants and created different network with vlan to each of them. ( i used admin user of admin tenant ).
VLAN networks are not shared, i created admin user per each tenant.
every admin user can see all networks and delete networks that belong to other tenants
this is not the case for instnace list.
i have also tested it when admin of one of the tenants create network , it is also seen by others.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.create 3 tenants
2.create 3 network with vlan per each tenant
3.create 3 admin users ( admin per tenant )
4. run nova-manage network list , check each admin user see the network of all tenants
5. delete network of tenant A by admin user of tenant B
Note that 'nova-manage' works very differently from the 'nova' command. It is a low level admin tool that does not go through the API, so there is no concept of which user is making the request.