starlingx
/
update
Code Issues Proposed changes
update/software/software
History
Joseph Vazhappilly 169b84bc6c Restrict software commands to keystone admin role 
When using Keystone auth for software cli, only user with 'admin' role
is allowed to run any commands. When using software cli without 'sudo',
all software commands require user with 'admin' role.

This review also update the exception handling and error reporting.

Test Plan:
PASS: A Keystone user in the 'admin' project with 'admin' role should
      be able to run ALL 'software' commands WITHOUT SUDO
PASS: A Keystone user in the 'admin' project with only 'member' and/or
      'reader' role should NOT be able to run ANY 'software' commands
      WITHOUT SUDO

Story: 2010676
Task: 49754

Change-Id: I46653021b1a82bccded5eb870dc0907cd5c2351b
Signed-off-by: Joseph Vazhappilly <joseph.vazhappillypaily@windriver.com>
 		2024-03-25 03:24:32 -04:00
..
api Restrict software commands to keystone admin role 2024-03-25 03:24:32 -04:00
authapi Restrict software commands to keystone admin role 2024-03-25 03:24:32 -04:00
db Deploy show implement 2024-03-05 12:27:56 -03:00
templates USM State Machine 2023-06-29 17:53:39 +00:00
tests Remove duplicate load import script copy 2024-02-28 17:38:51 -03:00
utilities Restrict software commands to keystone admin role 2024-03-25 03:24:32 -04:00
__init__.py Package the pecan templates with the code 2023-07-17 15:33:45 +00:00
apt_utils.py Fix pep8 errors 2024-01-23 20:22:42 +00:00
base.py Update unit tests for new software component 2023-05-01 21:09:15 +00:00
certificates.py Setup controller and agent processes for "software" 2023-04-20 19:22:30 +00:00
config.py Use "apt-ostree" to manage software deploy start 2024-01-10 21:23:24 +00:00
constants.py Merge "Implement versioned deploy precheck script" 2024-03-22 20:14:21 +00:00
dc_utils.py Add deletion constraint 2024-03-20 22:41:48 +00:00
exceptions.py Implement versioned deploy precheck script 2024-03-14 09:41:28 -03:00
messages.py deploy state changed update 2024-02-23 13:43:09 +00:00
ostree_utils.py Add retry logic for mount 2023-11-29 21:09:06 +00:00
parsable_error.py Restrict software commands to keystone admin role 2024-03-25 03:24:32 -04:00
release_data.py Add deletion constraint 2024-03-20 22:41:48 +00:00
release_signing.py Setup controller and agent processes for "software" 2023-04-20 19:22:30 +00:00
release_verify.py Setup controller and agent processes for "software" 2023-04-20 19:22:30 +00:00
software_agent.py Fix deploy host for in-service patch 2024-03-19 11:40:34 -03:00
software_controller.py Merge "Implement versioned deploy precheck script" 2024-03-22 20:14:21 +00:00
software_entities.py Add deletion constraint 2024-03-20 22:41:48 +00:00
software_functions.py Merge "Implement versioned deploy precheck script" 2024-03-22 20:14:21 +00:00
software_worker.py Create wrapper to run commands and log structured output 2023-11-24 16:26:07 -03:00
sysinv_utils.py Add deletion constraint 2024-03-20 22:41:48 +00:00
utils.py Restrict software commands to keystone admin role 2024-03-25 03:24:32 -04:00