From 50073c5a0e00389518ee414e3ef1ef1f5db1676d Mon Sep 17 00:00:00 2001
From: Liang Chen <cbjchen@cn.ibm.com>
Date: Thu, 11 Apr 2013 18:05:00 +0800
Subject: Add rule for list_groups_for_user in policy.json

Providing an initial policy rule for the list_groups_for_user
operation in the sample policy.json file for the ease of
configuration.

Fixes bug #1167836

Change-Id: Id253729098a95d3b129babde1b3706f409a095dd
---
 etc/policy.json | 1 +
 1 file changed, 1 insertion(+)

(limited to 'etc')

diff --git a/etc/policy.json b/etc/policy.json
index 17da8eac..f53161ef 100644
--- a/etc/policy.json
+++ b/etc/policy.json
@@ -38,6 +38,7 @@
 
     "identity:get_group": [["rule:admin_required"]],
     "identity:list_groups": [["rule:admin_required"]],
+    "identity:list_groups_for_user": [["rule:admin_or_owner"]],
     "identity:create_group": [["rule:admin_required"]],
     "identity:update_group": [["rule:admin_required"]],
     "identity:delete_group": [["rule:admin_required"]],
-- 
cgit