Comment 1 for bug 1794421

policy_rules for allowed_address_pairs is correct [1] and the corresponding policy.json from neutron is correct too [2].

The policy for allowed_address_pairs contains a network owner check like below.
  "update_port:allowed_address_pairs": "rule:admin_or_network_owner"
I wonder the network information is not passed correctly to the policy check function.

[1] http://git.openstack.org/cgit/openstack/horizon/tree/openstack_dashboard/dashboards/project/networks/ports/extensions/allowed_address_pairs/tables.py#n37
[2] http://git.openstack.org/cgit/openstack/horizon/tree/openstack_dashboard/conf/neutron_policy.json#n96