Red Hat Bugzilla – Bug 904730
network can be viewed/deleted by different tenants admin users
Last modified: 2013-02-12 11:49:05 EST
Created attachment 688377 [details] Network lists/delete actions Description of problem: network list can be viewed/deleted by different tenants admin users. I have created few tenants and created different network with vlan to each of them. ( i used admin user of admin tenant ). VLAN networks are not shared, i created admin user per each tenant. every admin user can see all networks and delete networks that belong to other tenants this is not the case for instnace list. i have also tested it when admin of one of the tenants create network , it is also seen by others. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1.create 3 tenants 2.create 3 network with vlan per each tenant 3.create 3 admin users ( admin per tenant ) 4. run nova-manage network list , check each admin user see the network of all tenants 5. delete network of tenant A by admin user of tenant B Actual results: Expected results: Additional info:
Note that 'nova-manage' works very differently from the 'nova' command. It is a low level admin tool that does not go through the API, so there is no concept of which user is making the request.