Feature #940
Restrict access to unsecure template attributes
Status: | Closed | Start date: | ||
---|---|---|---|---|
Priority: | Normal | Due date: | ||
Assignee: | Ruben S. Montero | % Done: | 100% | |
Category: | Core & System | |||
Target version: | Release 3.2 - S0 | |||
Resolution: | fixed | Pull request: |
Description
There are some template attributes like CONTEXT/FILES that exposes some vulnerabilities. This issue will restrict access to those attributes, so only the oneadmin group can use them in templates.
Subtasks
Associated revisions
feature #940: Removed security check in tm_context drivers. Added check for restricted attributes to
VirtualMachineTemplate class. VM creation check templates for non-oneadmin users.
feature #940: NIC/VLAN_ID is also a restricted attribute
Feature #940: Oneadmin can use any restricted att. no matter his group
Feature #940: Add restricted attributes for Images
History
#1 Updated by Ruben S. Montero over 9 years ago
- Status changed from New to Closed
- Resolution set to fixed