Guys I see the cinderclient tool allows a non-privileged user the ability to list endpoints for all services. Is there any reason not to update the cinder policy file to disable this behavior , and, can anyone tell me the policy that would need (adding) updating. I see no obvious policy in policy.json and the logs are not helpful.
Many Thanks Mike.
_______________________________________________ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
