Expand ACL testing
Bug #1646878 reported by
Nicholas Skaggs
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
juju-ci-tools |
Triaged
|
High
|
Unassigned |
Bug Description
We need to cover all of the edge cases and other potential security risk scenarios to prevent things like privilege escalation, improper model access, and other bugs.
Let's add tests to cover
admin@local
-login
-logout
-administer controller
-register controller as an admin
-add/remove users
-remove admin privileges
-grant admin privileges
read-user
-attempt privilege escalation to a write or admin user
write-user
-attempt privilege escalation to an admin
external-user
-attempt to manipulate controller
-attempt to view/modify another model on controller
-auth token manipulation
Changed in juju-ci-tools: | |
status: | New → Triaged |
importance: | Undecided → High |
To post a comment you must log in.