Created branch 'original' with unmodified policies

Change-Id: Ia0b0ae2786caabf70b16020bfdfe26c4b02fa0ea

1 files changed, 5 insertions, 6 deletions

diff --git a/etc/gnocchi/policy.json b/etc/gnocchi/policy.json
index 9381e11..00aaedd 100644
--- a/etc/gnocchi/policy.json
+++ b/etc/gnocchi/policy.json
@@ -1,12 +1,11 @@
 {
-    "deny_readonly": "not role:readonly",
     "admin_or_creator": "role:admin or project_id:%(created_by_project_id)s",
     "resource_owner": "project_id:%(project_id)s",
     "metric_owner": "project_id:%(resource.project_id)s",
 
     "get status": "role:admin",
 
-    "create resource": "rule:deny_readonly",
+    "create resource": "",
     "get resource": "rule:admin_or_creator or rule:resource_owner",
     "update resource": "rule:admin_or_creator",
     "delete resource": "rule:admin_or_creator",
@@ -31,13 +30,13 @@
     "list archive policy rule": "",
     "delete archive policy rule": "role:admin",
 
-    "create metric": "rule:deny_readonly",
+    "create metric": "",
     "delete metric": "rule:admin_or_creator",
-    "get metric": "rule:admin_or_creator or rule:metric_owner or role:readonly",
+    "get metric": "rule:admin_or_creator or rule:metric_owner",
     "search metric": "rule:admin_or_creator or rule:metric_owner",
     "list metric": "",
-    "list all metric": "role:admin or role:readonly",
+    "list all metric": "role:admin",
 
-    "get measures":  "rule:admin_or_creator or rule:metric_owner or role:readonly",
+    "get measures":  "rule:admin_or_creator or rule:metric_owner",
     "post measures":  "rule:admin_or_creator"
 }