From f79650325f459e12bbac8f6967dcfabece1de7a4 Mon Sep 17 00:00:00 2001 From: Juan Antonio Osorio Robles Date: Thu, 25 Oct 2018 15:48:25 +0300 Subject: Add ability to pass in target data for the oslopolicy-checker This allows us to test the policy for other services which might have different or unusual target data formats (such as Barbican). It would be possible to pass it as a nested dictionary, e.g.: { "target": { "secret": { "project_id": "my project id" } } } or as a key pair (as oslo.policy would expect): { "target.secret.project_id": "my project id" } Both will work (note that this logic was taken from barbican). This fixes around the limitation that the target is hardcoded to be "project_id", and thus allows to test more scenarios (such as the project ID not matching). Change-Id: Ia9f7462072a8cb142251c8bb5ef19d9a25a98119 --- .../Pass-target-dict-to-oslopolicy-checker-87185d40aec413ee.yaml | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 releasenotes/notes/Pass-target-dict-to-oslopolicy-checker-87185d40aec413ee.yaml (limited to 'releasenotes') diff --git a/releasenotes/notes/Pass-target-dict-to-oslopolicy-checker-87185d40aec413ee.yaml b/releasenotes/notes/Pass-target-dict-to-oslopolicy-checker-87185d40aec413ee.yaml new file mode 100644 index 0000000..a844f3f --- /dev/null +++ b/releasenotes/notes/Pass-target-dict-to-oslopolicy-checker-87185d40aec413ee.yaml @@ -0,0 +1,6 @@ +--- +features: + - | + oslopolicy-checker was added the ability to accept a file containing a hash + that represents the target. This makes it possible to check policies that + have non-conventional targets such as barbican. -- cgit v1.2.1