diff options
Diffstat (limited to 'etc/aodh/policy.json')
-rw-r--r-- | etc/aodh/policy.json | 25 |
1 files changed, 12 insertions, 13 deletions
diff --git a/etc/aodh/policy.json b/etc/aodh/policy.json index 0ebd883..4fd873e 100644 --- a/etc/aodh/policy.json +++ b/etc/aodh/policy.json @@ -1,21 +1,20 @@ { - "deny_readonly": "not role:readonly", - "context_is_admin": "role:admin and rule:deny_readonly", + "context_is_admin": "role:admin", "segregation": "rule:context_is_admin", "admin_or_owner": "rule:context_is_admin or project_id:%(project_id)s", - "default": "rule:admin_or_owner and rule:deny_readonly", + "default": "rule:admin_or_owner", - "telemetry:get_alarm": "rule:admin_or_owner and rule:deny_readonly", - "telemetry:get_alarms": "rule:admin_or_owner and rule:deny_readonly", - "telemetry:query_alarm": "rule:admin_or_owner and rule:deny_readonly", + "telemetry:get_alarm": "rule:admin_or_owner", + "telemetry:get_alarms": "rule:admin_or_owner", + "telemetry:query_alarm": "rule:admin_or_owner", - "telemetry:create_alarm": "rule:deny_readonly", - "telemetry:change_alarm": "rule:admin_or_owner and rule:deny_readonly", - "telemetry:delete_alarm": "rule:admin_or_owner and rule:deny_readonly", + "telemetry:create_alarm": "", + "telemetry:change_alarm": "rule:admin_or_owner", + "telemetry:delete_alarm": "rule:admin_or_owner", - "telemetry:get_alarm_state": "rule:admin_or_owner and rule:deny_readonly", - "telemetry:change_alarm_state": "rule:admin_or_owner and rule:deny_readonly", + "telemetry:get_alarm_state": "rule:admin_or_owner", + "telemetry:change_alarm_state": "rule:admin_or_owner", - "telemetry:alarm_history": "rule:admin_or_owner and rule:deny_readonly", - "telemetry:query_alarm_history": "rule:admin_or_owner and rule:deny_readonly" + "telemetry:alarm_history": "rule:admin_or_owner", + "telemetry:query_alarm_history": "rule:admin_or_owner" } |