summaryrefslogtreecommitdiff
path: root/heat/policies/__init__.py
Commit message (Collapse)AuthorAgeFilesLines
* Remove CloudWatch APIrabi2018-01-281-2/+0
| | | | | | | | | This patch removes the API, the next set of patches in the series would remove stack watch service and related WatchRule implementation. Change-Id: I8b0472be862907298c8da51f435b5d8b19610ec3 Partial-Bug: #1743707
* [policy in code] part 6(cfn, cloudwatch)ricolin2017-12-131-0/+4
| | | | | | | | | | Add cloudformation and cloudwatch policy in code rules. Remove policy.json. We don't keep any default policy rules in policy.json from now. Still they can create policy.json file and add any rules they try to override. Partially-Implements: bp policy-in-code Change-Id: I610115dc1974b2182ce673bb086a1da15b022de3
* [policy in code] part 5 (software-*)ricolin2017-12-071-0/+4
| | | | | | | Add software_deployments rules, software_configs rules. Partially-Implements: bp policy-in-code Change-Id: If0c98ffcfceae395ab2443356aea3904edaf7b4e
* [policy in code] part 4ricolin2017-12-011-1/+11
| | | | | | | | Add service rule, resource rules, actions rules, build_info rules, events rules. Partially-Implements: bp policy-in-code Change-Id: I497f4d02b5ea8399265dedc548214e4eca6b6a35
* [policy in code] part3 (resource types)ricolin2017-12-011-0/+2
| | | | | | | | | Allow use policy in code to resource type's rule. Also add test for override the in-code resource type rule in json file. Partially-Implements: bp policy-in-code Change-Id: Id6c21732e66de6c421427ded98de52f5da0a4db2
* [policy in code] part 2 (stacks)ricolin2017-12-011-0/+2
| | | | | | | | Allow use policy in code to stacks's rule. Also convert check_is_admin to use new mechanism. Partially-Implements: bp policy-in-code Change-Id: I398ed162790294d0d4453f7f12c77b38e95a5580
* [policy in code] Part 1 Base frameworkricolin2017-11-211-0/+22
This adds the basic framework for registering and using default policy rules. Rules should be defined and returned from a module in heat/policies/, and then added to the list in heat/policies/__init__.py. new policy wrapers `registered_identified_stack` and `registered_policy_enforce` has been added for policy enforcement of registered rules with same parameter as `identified_stack` and `policy_enforce` besides set `is_registered_policy` flag to true. This flag will decide to use new policy framework or not. Now we can use `tox -e genpolicy` to check and generate policy file. Change-Id: I7a232b3ea7ce0f69a5b7ffa278ceace7a76b666f Partially-Implements: bp policy-in-code
View Lorry Controller Status