Add service validation to Patrole framework
Currently, the rbac_rule_
@rbac_rule_
A keystone API call should be done to service list to validate whether service="nova" is a valid argument. This validation can either be done in rbac_rule_
Note that the way rbac_utils is currently designed precludes it from being able to perform a keystone call -- so do not put it there.
Also note that when running "openstack service list" the service "heat-cfn" is returned (rather than "heat") so the service validation might need to use a regex.
Blueprint information
- Status:
- Complete
- Approver:
- Samantha Blanco
- Priority:
- Undefined
- Drafter:
- Felipe Monteiro
- Direction:
- Needs approval
- Assignee:
- Rick Bartra
- Definition:
- New
- Series goal:
- None
- Implementation:
- Implemented
- Milestone target:
- None
- Started by
- Rick Bartra
- Completed by
- Rick Bartra
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
Add service validation to Patrole framework