patrole_tempest_plugin.rbac_authority module

this page last updated: 2019-04-11 16:40:02.417994

patrole_tempest_plugin.rbac_authority module

class patrole_tempest_plugin.rbac_authority.RbacAuthority[source]

Bases: object

Class for validating whether a given role can perform a policy action.

Any class that extends RbacAuthority provides the logic for determining whether a role has permissions to execute a policy action.

allowed(rule, role)[source]

Determine whether the role should be able to perform the API.

Parameters:
  • rule – The name of the policy enforced by the API.
  • role – The role used to determine whether rule can be executed.
Returns:

True if the role has permissions to execute rule, else False.
this page last updated: 2019-04-11 16:40:02.417994
Creative Commons Attribution 3.0 License

Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.

found an error? report a bug questions?