commit a120f251d0ccba90803952ccf6099e86334c4df9
Author: Steven Hardy <email address hidden>
Date: Tue Oct 29 16:50:17 2013 +0000
Fix issue deleting ec2-credentials as non-admin user
The ec2tokens controller incorrectly uses the access id, not the
hashed credential id in _assert_owner, which means that non-admin
users can't delete their ec2-credentials. Adding the hashing, as
in _get_credentials fixes the problem. Test added demonstrating
the issue.
Change-Id: Ifb6e3e10a50541cf21d25880bd74e9aeb6df4f26
Closes-Bug: #1245435
(cherry picked from commit 85ca6ac8a7fab14c659673ddf47777badcbcbf04)
Reviewed: https:/ /review. openstack. org/81492 /git.openstack. org/cgit/ openstack/ keystone/ commit/ ?id=a120f251d0c cba90803952ccf6 099e86334c4df9
Committed: https:/
Submitter: Jenkins
Branch: stable/havana
commit a120f251d0ccba9 0803952ccf6099e 86334c4df9
Author: Steven Hardy <email address hidden>
Date: Tue Oct 29 16:50:17 2013 +0000
Fix issue deleting ec2-credentials as non-admin user
The ec2tokens controller incorrectly uses the access id, not the
hashed credential id in _assert_owner, which means that non-admin
users can't delete their ec2-credentials. Adding the hashing, as
in _get_credentials fixes the problem. Test added demonstrating
the issue.
Change-Id: Ifb6e3e10a50541 cf21d25880bd74e 9aeb6df4f26 c659673ddf47777 badcbcbf04)
Closes-Bug: #1245435
(cherry picked from commit 85ca6ac8a7fab14