Comment 14 for bug 1400966
Revision history for this message
| Thierry Carrez (ttx) wrote Re: Glance allows users to download and delete any file in glance-api server | #14 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
f399f05
demo site
(Get the code!)
Changing the set/get location policies default to admin only is not a bad idea, but that's a different patch (master only).
For the (backportable) vulnerability fix, we ideally need something which would close the hole without chaging behavior for "normal" users. Are there valid use cases for specifying a file:// location ? If not, I think having a v1-style check in v2 is the simplest solution.