Reader role does not seem to prevent write/modify

Solution Verified - Updated -

Issue

  • User with reader role has the ability to create/delete instances, volumes, network and other resources just like the privileges of admin or member user of a project.
  • The Identity service (keystone) has also added the reader role that will show up in role listings. Do not use the reader role as it has not been integrated into other OpenStack projects, and provides inconsistent permissions across services.

Environment

Red Hat OpenStack Platform 16.1

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content