You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cloudstack.apache.org by "Sangeetha Hariharan (JIRA)" <ji...@apache.org> on 2014/06/13 00:46:02 UTC
[jira] [Closed] (CLOUDSTACK-6474) IAM - Not able to list shared
networks that is created with scope="all"
[ https://issues.apache.org/jira/browse/CLOUDSTACK-6474?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sangeetha Hariharan closed CLOUDSTACK-6474.
-------------------------------------------
Test with latest build from 4.4-forward (after IAM revert)
Regular user is able to list and use (deploy VM) in a shared network that is created with scope=all.
closing issue.
> IAM - Not able to list shared networks that is created with scope="all"
> -----------------------------------------------------------------------
>
> Key: CLOUDSTACK-6474
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-6474
> Project: CloudStack
> Issue Type: Bug
> Security Level: Public(Anyone can view this level - this is the default.)
> Components: IAM
> Affects Versions: 4.4.0
> Environment: Build from 4.4
> Reporter: Sangeetha Hariharan
> Assignee: Prachi Damle
> Priority: Critical
> Fix For: 4.4.0
>
>
> IAM - Not able to list shared networks that is created with scope="all"
> Steps to reproduce the problem:
> As admin , create a shared network with scope="all".
> As regular user , tried to list networks. No shared network is returned.
> http://10.223.49.6:8080/client/api?command=listNetworks&response=json&sessionkey=wOwS556QDduN5hRqHf1PU3gPBEw%3D&listAll=true&page=1&pagesize=20&_=1398206302627
> "listnetworksresponse" : { } }
> As admin user , I am able to list this network:
> http://10.223.49.6:8080/client/api?command=listNetworks&response=json&sessionkey=58UVhAXG49kJHSOENDGphnXDEh4%3D&listAll=true&page=1&pagesize=20&_=1398206454900
> { "listnetworksresponse" : { "count":3 ,"network" : [ {"id":"65324d0a-5571-4e96-aebe-89d45fbabc72","name":"test-domain","displaytext":"test-domain","broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"10.223.1.1","netmask":"255.255.255.0","cidr":"10.223.1.0/24","zoneid":"75d61334-ff70-49c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"564de11f-a786-44cf-a729-c4683a12dfe0","networkofferingname":"DefaultSharedNetworkOfferingWithSGService","networkofferingdisplaytext":"Offering for Shared Security group enabled networks","networkofferingconservemode":true,"networkofferingavailability":"Optional","issystem":false,"state":"Setup","related":"65324d0a-5571-4e96-aebe-89d45fbabc72","broadcasturi":"vlan://501","dns1":"4.2.2.2","type":"Shared","vlan":"501","acltype":"Domain","subdomainaccess":false,"domainid":"691ab662-6793-42a0-96e6-3b31a2c4e52d","domain":"D1","service":[{"name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSuffixModification","value":"true","canchooseservicecapability":false}]},{"name":"Dhcp","capability":[{"name":"DhcpAccrossMultipleSubnets","value":"true","canchooseservicecapability":false}]},{"name":"SecurityGroup"}],"networkdomain":"cs1cloud.internal","physicalnetworkid":"3856a5bc-8509-4a7f-a92e-86146cbc6bc1","restartrequired":false,"specifyipranges":true,"canusefordeploy":true,"ispersistent":false,"tags":[],"displaynetwork":true,"strechedl2subnet":false}, {"id":"49146336-bf81-4861-a2bd-5c92efc14cff","name":"test","displaytext":"test","broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"10.223.1.1","netmask":"255.255.255.0","cidr":"10.223.1.0/24","zoneid":"75d61334-ff70-49c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"564de11f-a786-44cf-a729-c4683a12dfe0","networkofferingname":"DefaultSharedNetworkOfferingWithSGService","networkofferingdisplaytext":"Offering for Shared Security group enabled networks","networkofferingconservemode":true,"networkofferingavailability":"Optional","issystem":false,"state":"Setup","related":"49146336-bf81-4861-a2bd-5c92efc14cff","broadcasturi":"vlan://500","dns1":"4.2.2.2","type":"Shared","vlan":"500","acltype":"Domain","subdomainaccess":true,"domainid":"e5e2ad7a-c019-11e3-907f-4adf980f9414","domain":"ROOT","service":[{"name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSuffixModification","value":"true","canchooseservicecapability":false}]},{"name":"Dhcp","capability":[{"name":"DhcpAccrossMultipleSubnets","value":"true","canchooseservicecapability":false}]},{"name":"SecurityGroup"}],"networkdomain":"cs1cloud.internal","physicalnetworkid":"3856a5bc-8509-4a7f-a92e-86146cbc6bc1","restartrequired":false,"specifyipranges":true,"canusefordeploy":true,"ispersistent":false,"tags":[],"displaynetwork":true,"strechedl2subnet":false}, {"id":"aee03e51-468e-4311-aebc-827d9a43adf0","name":"test","displaytext":"test","broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"10.1.1.1","netmask":"255.255.255.0","cidr":"10.1.1.0/24","zoneid":"75d61334-ff70-49c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"987d8feb-73b5-4f01-9152-6680a31bc60a","networkofferingname":"DefaultIsolatedNetworkOfferingWithSourceNatService","networkofferingdisplaytext":"Offering for Isolated networks with Source Nat service enabled","networkofferingconservemode":true,"networkofferingavailability":"Required","issystem":false,"state":"Implemented","related":"aee03e51-468e-4311-aebc-827d9a43adf0","broadcasturi":"vlan://1","dns1":"4.2.2.2","type":"Isolated","vlan":"1","acltype":"Account","account":"admin","domainid":"e5e2ad7a-c019-11e3-907f-4adf980f9414","domain":"ROOT","service":[{"name":"SourceNat","capability":[{"name":"SupportedSourceNatTypes","value":"peraccount","canchooseservicecapability":false},{"name":"RedundantRouter","value":"true","canchooseservicecapability":false}]},{"name":"Firewall","capability":[{"name":"SupportedTrafficDirection","value":"ingress, egress","canchooseservicecapability":false},{"name":"SupportedProtocols","value":"tcp,udp,icmp","canchooseservicecapability":false},{"name":"TrafficStatistics","value":"per public ip","canchooseservicecapability":false},{"name":"MultipleIps","value":"true","canchooseservicecapability":false},{"name":"SupportedEgressProtocols","value":"tcp,udp,icmp, all","canchooseservicecapability":false}]},{"name":"PortForwarding"},{"name":"StaticNat"},{"name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSuffixModification","value":"true","canchooseservicecapability":false}]},{"name":"Lb","capability":[{"name":"SupportedLBIsolation","value":"dedicated","canchooseservicecapability":false},{"name":"LbSchemes","value":"Public","canchooseservicecapability":false},{"name":"SupportedProtocols","value":"tcp, udp","canchooseservicecapability":false},{"name":"SupportedStickinessMethods","value":"[{\"methodname\":\"LbCookie\",\"paramlist\":[{\"paramname\":\"cookie-name\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"mode\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"nocache\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"paramname\":\"indirect\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"paramname\":\"postonly\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"paramname\":\"domain\",\"required\":false,\"isflag\":false,\"description\":\" \"}],\"description\":\"This is loadbalancer cookie based stickiness method.\"},{\"methodname\":\"AppCookie\",\"paramlist\":[{\"paramname\":\"cookie-name\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"length\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"holdtime\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"request-learn\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"paramname\":\"prefix\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"paramname\":\"mode\",\"required\":false,\"isflag\":false,\"description\":\" \"}],\"description\":\"This is App session based sticky method. Define session stickiness on an existing application cookie. It can be used only for a specific http traffic\"},{\"methodname\":\"SourceBased\",\"paramlist\":[{\"paramname\":\"tablesize\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"expire\",\"required\":false,\"isflag\":false,\"description\":\" \"}],\"description\":\"This is source based Stickiness method, it can be used for any type of protocol.\"}]","canchooseservicecapability":false},{"name":"SupportedLbAlgorithms","value":"roundrobin,leastconn,source","canchooseservicecapability":false},{"name":"AutoScaleCounters","value":"[{\"methodname\":\"cpu\",\"paramlist\":[]},{\"methodname\":\"memory\",\"paramlist\":[]}]","canchooseservicecapability":false}]},{"name":"Vpn","capability":[{"name":"SupportedVpnTypes","value":"pptp,l2tp,ipsec","canchooseservicecapability":false},{"name":"VpnTypes","value":"removeaccessvpn","canchooseservicecapability":false}]},{"name":"Dhcp","capability":[{"name":"DhcpAccrossMultipleSubnets","value":"true","canchooseservicecapability":false}]}],"networkdomain":"cs2cloud.internal","physicalnetworkid":"3856a5bc-8509-4a7f-a92e-86146cbc6bc1","restartrequired":false,"specifyipranges":false,"canusefordeploy":true,"ispersistent":false,"tags":[],"displaynetwork":true,"strechedl2subnet":false} ] } }
--
This message was sent by Atlassian JIRA
(v6.2#6252)