Return-Path: 
 <issues-return-41172-apmail-cloudstack-issues-archive=cloudstack.apache.org@cloudstack.apache.org>
X-Original-To: apmail-cloudstack-issues-archive@www.apache.org
Delivered-To: apmail-cloudstack-issues-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 1EEFE10CCC
	for <apmail-cloudstack-issues-archive@www.apache.org>;
 Wed, 23 Apr 2014 08:48:34 +0000 (UTC)
Received: (qmail 55246 invoked by uid 500); 23 Apr 2014 08:48:32 -0000
Delivered-To: apmail-cloudstack-issues-archive@cloudstack.apache.org
Received: (qmail 55067 invoked by uid 500); 23 Apr 2014 08:48:32 -0000
Mailing-List: contact issues-help@cloudstack.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@cloudstack.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@cloudstack.apache.org>
List-Post: <mailto:issues@cloudstack.apache.org>
List-Id: <issues.cloudstack.apache.org>
Reply-To: dev@cloudstack.apache.org
Delivered-To: mailing list issues@cloudstack.apache.org
Received: (qmail 54729 invoked by uid 500); 23 Apr 2014 08:48:30 -0000
Delivered-To: apmail-incubator-cloudstack-issues@incubator.apache.org
Received: (qmail 54691 invoked by uid 99); 23 Apr 2014 08:48:19 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 23 Apr 2014 08:48:19 +0000
Date: Wed, 23 Apr 2014 08:48:19 +0000 (UTC)
From: "ASF subversion and git services (JIRA)" <jira@apache.org>
To: cloudstack-issues@incubator.apache.org
Message-ID: <JIRA.12709902.1398206548174.161883.1398242899039@arcas>
In-Reply-To: <JIRA.12709902.1398206548174@arcas>
References: <JIRA.12709902.1398206548174@arcas>
Subject: [jira] [Commented] (CLOUDSTACK-6474) IAM - Not able to list shared
 networks that is created with scope="all"
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/CLOUDSTACK-6474?page=3Dcom.atla=
ssian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=
=3D13977996#comment-13977996 ]=20

ASF subversion and git services commented on CLOUDSTACK-6474:
-------------------------------------------------------------

Commit 52f40433b9dbc5d78e7000410da09cb7f55e499f in cloudstack's branch refs=
/heads/4.4 from [~prachidamle]
[ https://git-wip-us.apache.org/repos/asf?p=3Dcloudstack.git;h=3D52f4043 ]

CLOUDSTACK-6474: IAM - Not able to list shared networks that is created wit=
h scope=3D"all"

Changes:
- On startup the root domain group should be created
- Also the SYSTEM and Root Admin accounts should be added to that group
- This will make sure that the root domain shared network's policy gets att=
ached to the root domain group


> IAM - Not able to list shared networks that is created with scope=3D"all"
> -----------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-6474
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-647=
4
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the defa=
ult.)=20
>          Components: IAM
>    Affects Versions: 4.4.0
>         Environment: Build from 4.4
>            Reporter: Sangeetha Hariharan
>            Assignee: Prachi Damle
>            Priority: Critical
>             Fix For: 4.4.0
>
>
> IAM - Not able to list shared networks that is created with scope=3D"all"
> Steps to reproduce the problem:
> As admin , create a shared network with scope=3D"all".
> As regular user , tried to list networks. No shared network is returned.
> http://10.223.49.6:8080/client/api?command=3DlistNetworks&response=3Djson=
&sessionkey=3DwOwS556QDduN5hRqHf1PU3gPBEw%3D&listAll=3Dtrue&page=3D1&pagesi=
ze=3D20&_=3D1398206302627
> "listnetworksresponse" : { } }
> As admin user , I am able to list this network:
> http://10.223.49.6:8080/client/api?command=3DlistNetworks&response=3Djson=
&sessionkey=3D58UVhAXG49kJHSOENDGphnXDEh4%3D&listAll=3Dtrue&page=3D1&pagesi=
ze=3D20&_=3D1398206454900
> { "listnetworksresponse" : { "count":3 ,"network" : [  {"id":"65324d0a-55=
71-4e96-aebe-89d45fbabc72","name":"test-domain","displaytext":"test-domain"=
,"broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"10.223.1.1",=
"netmask":"255.255.255.0","cidr":"10.223.1.0/24","zoneid":"75d61334-ff70-49=
c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"564de11f-a786-=
44cf-a729-c4683a12dfe0","networkofferingname":"DefaultSharedNetworkOffering=
WithSGService","networkofferingdisplaytext":"Offering for Shared Security g=
roup enabled networks","networkofferingconservemode":true,"networkofferinga=
vailability":"Optional","issystem":false,"state":"Setup","related":"65324d0=
a-5571-4e96-aebe-89d45fbabc72","broadcasturi":"vlan://501","dns1":"4.2.2.2"=
,"type":"Shared","vlan":"501","acltype":"Domain","subdomainaccess":false,"d=
omainid":"691ab662-6793-42a0-96e6-3b31a2c4e52d","domain":"D1","service":[{"=
name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSuffixModifi=
cation","value":"true","canchooseservicecapability":false}]},{"name":"Dhcp"=
,"capability":[{"name":"DhcpAccrossMultipleSubnets","value":"true","canchoo=
seservicecapability":false}]},{"name":"SecurityGroup"}],"networkdomain":"cs=
1cloud.internal","physicalnetworkid":"3856a5bc-8509-4a7f-a92e-86146cbc6bc1"=
,"restartrequired":false,"specifyipranges":true,"canusefordeploy":true,"isp=
ersistent":false,"tags":[],"displaynetwork":true,"strechedl2subnet":false},=
 {"id":"49146336-bf81-4861-a2bd-5c92efc14cff","name":"test","displaytext":"=
test","broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"10.223.=
1.1","netmask":"255.255.255.0","cidr":"10.223.1.0/24","zoneid":"75d61334-ff=
70-49c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"564de11f-=
a786-44cf-a729-c4683a12dfe0","networkofferingname":"DefaultSharedNetworkOff=
eringWithSGService","networkofferingdisplaytext":"Offering for Shared Secur=
ity group enabled networks","networkofferingconservemode":true,"networkoffe=
ringavailability":"Optional","issystem":false,"state":"Setup","related":"49=
146336-bf81-4861-a2bd-5c92efc14cff","broadcasturi":"vlan://500","dns1":"4.2=
.2.2","type":"Shared","vlan":"500","acltype":"Domain","subdomainaccess":tru=
e,"domainid":"e5e2ad7a-c019-11e3-907f-4adf980f9414","domain":"ROOT","servic=
e":[{"name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSuffix=
Modification","value":"true","canchooseservicecapability":false}]},{"name":=
"Dhcp","capability":[{"name":"DhcpAccrossMultipleSubnets","value":"true","c=
anchooseservicecapability":false}]},{"name":"SecurityGroup"}],"networkdomai=
n":"cs1cloud.internal","physicalnetworkid":"3856a5bc-8509-4a7f-a92e-86146cb=
c6bc1","restartrequired":false,"specifyipranges":true,"canusefordeploy":tru=
e,"ispersistent":false,"tags":[],"displaynetwork":true,"strechedl2subnet":f=
alse}, {"id":"aee03e51-468e-4311-aebc-827d9a43adf0","name":"test","displayt=
ext":"test","broadcastdomaintype":"Vlan","traffictype":"Guest","gateway":"1=
0.1.1.1","netmask":"255.255.255.0","cidr":"10.1.1.0/24","zoneid":"75d61334-=
ff70-49c3-99ed-3af702cd51d7","zonename":"BLR1","networkofferingid":"987d8fe=
b-73b5-4f01-9152-6680a31bc60a","networkofferingname":"DefaultIsolatedNetwor=
kOfferingWithSourceNatService","networkofferingdisplaytext":"Offering for I=
solated networks with Source Nat service enabled","networkofferingconservem=
ode":true,"networkofferingavailability":"Required","issystem":false,"state"=
:"Implemented","related":"aee03e51-468e-4311-aebc-827d9a43adf0","broadcastu=
ri":"vlan://1","dns1":"4.2.2.2","type":"Isolated","vlan":"1","acltype":"Acc=
ount","account":"admin","domainid":"e5e2ad7a-c019-11e3-907f-4adf980f9414","=
domain":"ROOT","service":[{"name":"SourceNat","capability":[{"name":"Suppor=
tedSourceNatTypes","value":"peraccount","canchooseservicecapability":false}=
,{"name":"RedundantRouter","value":"true","canchooseservicecapability":fals=
e}]},{"name":"Firewall","capability":[{"name":"SupportedTrafficDirection","=
value":"ingress, egress","canchooseservicecapability":false},{"name":"Suppo=
rtedProtocols","value":"tcp,udp,icmp","canchooseservicecapability":false},{=
"name":"TrafficStatistics","value":"per public ip","canchooseservicecapabil=
ity":false},{"name":"MultipleIps","value":"true","canchooseservicecapabilit=
y":false},{"name":"SupportedEgressProtocols","value":"tcp,udp,icmp, all","c=
anchooseservicecapability":false}]},{"name":"PortForwarding"},{"name":"Stat=
icNat"},{"name":"UserData"},{"name":"Dns","capability":[{"name":"AllowDnsSu=
ffixModification","value":"true","canchooseservicecapability":false}]},{"na=
me":"Lb","capability":[{"name":"SupportedLBIsolation","value":"dedicated","=
canchooseservicecapability":false},{"name":"LbSchemes","value":"Public","ca=
nchooseservicecapability":false},{"name":"SupportedProtocols","value":"tcp,=
 udp","canchooseservicecapability":false},{"name":"SupportedStickinessMetho=
ds","value":"[{\"methodname\":\"LbCookie\",\"paramlist\":[{\"paramname\":\"=
cookie-name\",\"required\":false,\"isflag\":false,\"description\":\" \"},{\=
"paramname\":\"mode\",\"required\":false,\"isflag\":false,\"description\":\=
" \"},{\"paramname\":\"nocache\",\"required\":false,\"isflag\":true,\"descr=
iption\":\" \"},{\"paramname\":\"indirect\",\"required\":false,\"isflag\":t=
rue,\"description\":\" \"},{\"paramname\":\"postonly\",\"required\":false,\=
"isflag\":true,\"description\":\" \"},{\"paramname\":\"domain\",\"required\=
":false,\"isflag\":false,\"description\":\" \"}],\"description\":\"This is =
loadbalancer cookie based stickiness method.\"},{\"methodname\":\"AppCookie=
\",\"paramlist\":[{\"paramname\":\"cookie-name\",\"required\":false,\"isfla=
g\":false,\"description\":\" \"},{\"paramname\":\"length\",\"required\":fal=
se,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"holdtime\",\"re=
quired\":false,\"isflag\":false,\"description\":\" \"},{\"paramname\":\"req=
uest-learn\",\"required\":false,\"isflag\":true,\"description\":\" \"},{\"p=
aramname\":\"prefix\",\"required\":false,\"isflag\":true,\"description\":\"=
 \"},{\"paramname\":\"mode\",\"required\":false,\"isflag\":false,\"descript=
ion\":\" \"}],\"description\":\"This is App session based sticky method. De=
fine session stickiness on an existing application cookie. It can be used o=
nly for a specific http traffic\"},{\"methodname\":\"SourceBased\",\"paraml=
ist\":[{\"paramname\":\"tablesize\",\"required\":false,\"isflag\":false,\"d=
escription\":\" \"},{\"paramname\":\"expire\",\"required\":false,\"isflag\"=
:false,\"description\":\" \"}],\"description\":\"This is source based Stick=
iness method, it can be used for any type of protocol.\"}]","canchooseservi=
cecapability":false},{"name":"SupportedLbAlgorithms","value":"roundrobin,le=
astconn,source","canchooseservicecapability":false},{"name":"AutoScaleCount=
ers","value":"[{\"methodname\":\"cpu\",\"paramlist\":[]},{\"methodname\":\"=
memory\",\"paramlist\":[]}]","canchooseservicecapability":false}]},{"name":=
"Vpn","capability":[{"name":"SupportedVpnTypes","value":"pptp,l2tp,ipsec","=
canchooseservicecapability":false},{"name":"VpnTypes","value":"removeaccess=
vpn","canchooseservicecapability":false}]},{"name":"Dhcp","capability":[{"n=
ame":"DhcpAccrossMultipleSubnets","value":"true","canchooseservicecapabilit=
y":false}]}],"networkdomain":"cs2cloud.internal","physicalnetworkid":"3856a=
5bc-8509-4a7f-a92e-86146cbc6bc1","restartrequired":false,"specifyipranges":=
false,"canusefordeploy":true,"ispersistent":false,"tags":[],"displaynetwork=
":true,"strechedl2subnet":false} ] } }



--
This message was sent by Atlassian JIRA
(v6.2#6252)