diff options
author | Roman Prykhodchenko <me@romcheg.me> | 2013-07-15 20:29:19 +0300 |
---|---|---|
committer | Roman Prykhodchenko <me@romcheg.me> | 2013-07-20 11:13:22 +0300 |
commit | 71c2525d4d5da3856f1cac963aeaa6df95233935 (patch) | |
tree | 3186759edd92e471e7b6a50a79c8d2e1413d361e /ironic/common/policy.py | |
parent | 3cabb052e1c33b533cbdd06397542161db44743a (diff) | |
download | ironic-71c2525d4d5da3856f1cac963aeaa6df95233935.tar.gz |
Keystone authentiation.
Enabled ACL and implemented a hook for configuring
request context.
Implemented a hook that rejects all non-admin requests.
Change-Id: Ie436d4b41ef9fb54b33f5a7dad77c3e46a26385a
Diffstat (limited to 'ironic/common/policy.py')
-rw-r--r-- | ironic/common/policy.py | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/ironic/common/policy.py b/ironic/common/policy.py index a99aaf3fd..1c764daca 100644 --- a/ironic/common/policy.py +++ b/ironic/common/policy.py @@ -83,7 +83,7 @@ def enforce(context, action, target, do_raise=True): :param do_raise: if True (the default), raises PolicyNotAuthorized; if False, returns False - :raises nova.exception.PolicyNotAuthorized: if verification fails + :raises ironic.exception.PolicyNotAuthorized: if verification fails and do_raise is True. :return: returns a non-False value (not necessarily "True") if @@ -114,7 +114,7 @@ def check_is_admin(context): return policy.check('context_is_admin', target, credentials) -@policy.register('is_admin') +@policy.register('context_is_admin') class IsAdminCheck(policy.Check): """An explicit check for is_admin.""" |