Fix 1504 - NBI-HA do not manage correctly new roles (RBAC) 45/10745/1
authorsousaedu <eduardo.sousa@canonical.com>
Wed, 5 May 2021 10:48:16 +0000 (12:48 +0200)
committersousaedu <eduardo.sousa@canonical.com>
Wed, 5 May 2021 11:38:08 +0000 (13:38 +0200)
Reloads the role permission before any authorization is
performed.

Change-Id: Iaedfc6e298467b3156cc06a677c78f23f8b9d3b4
Signed-off-by: sousaedu <eduardo.sousa@canonical.com>
osm_nbi/auth.py

index 6cbfe68..dcf12c3 100644 (file)
@@ -486,6 +486,7 @@ class Authenticator:
         :return: True if access granted by permission rules, False if access granted by default rules (Bug 853)
         :raises: AuthExceptionUnauthorized if access denied
         """
+        self.load_operation_to_allowed_roles()
 
         roles_required = self.operation_to_allowed_roles[role_permission]
         roles_allowed = [role["name"] for role in token_info["roles"]]