proxmox-mirrors/pve-access-control
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-access-control synced 2025-07-25 21:14:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

comput coarse UI permissions: also check SDN ones

Browse Source 
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
This commit is contained in:
Thomas Lamprecht 2020-06-09 11:43:51 +02:00
parent e6624f504b
commit a1281512d0
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
PVE/API2/AccessControl.pm
View File

@ -176,11 +176,12 @@ my $compute_api_permission = sub {
access => qr/(User|Group)\.|Permissions\.Modify/, access => qr/(User|Group)\.|Permissions\.Modify/,
storage => qr/Datastore\.|Permissions\.Modify/, storage => qr/Datastore\.|Permissions\.Modify/,
nodes => qr/Sys\.|Permissions\.Modify/, nodes => qr/Sys\.|Permissions\.Modify/,
dc => qr/Sys\.Audit/, sdn => qr/SDN\./,
dc => qr/Sys\.Audit|SDN\./,
}; };
map { $res->{$_} = {} } keys %$priv_re_map; map { $res->{$_} = {} } keys %$priv_re_map;
my $required_paths = ['/', '/nodes', '/access/groups', '/vms', '/storage']; my $required_paths = ['/', '/nodes', '/access/groups', '/vms', '/storage', '/sdn'];
my $checked_paths = {}; my $checked_paths = {};
foreach my $path (@$required_paths, keys %{$usercfg->{acl}}) { foreach my $path (@$required_paths, keys %{$usercfg->{acl}}) {