[pve-devel] [PATCH access-control] perms: fix wrong /pools entry in default set of ACL paths

Fabian Grünbichler Wed, 08 Nov 2023 02:30:29 -0800

/pools is not an allowed ACL path, so this would add a bogus entry into the
effective permissions in case something got propagated from /.


Signed-off-by: Fabian Grünbichler <f.gruenbich...@proxmox.com>
---
stumbled upon this while working on unrelated pool stuff..

 src/PVE/RPCEnvironment.pm | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/PVE/RPCEnvironment.pm b/src/PVE/RPCEnvironment.pm
index 5eb339a..646a9b9 100644
--- a/src/PVE/RPCEnvironment.pm
+++ b/src/PVE/RPCEnvironment.pm
@@ -242,7 +242,7 @@ sub get_effective_permissions {
        '/access' => 1,
        '/access/groups' => 1,
        '/nodes' => 1,
-       '/pools' => 1,
+       '/pool' => 1,
        '/sdn' => 1,
        '/storage' => 1,
        '/vms' => 1,
-- 
2.39.2



_______________________________________________
pve-devel mailing list
pve-devel@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel

[pve-devel] [PATCH access-control] perms: fix wrong /pools entry in default set of ACL paths

Reply via email to