DaanHoogland commented on issue #5781: URL: https://github.com/apache/cloudstack/issues/5781#issuecomment-1016562743
@StepBee , I think that the algorithm for checking such escalation happening is not trivial; There is deny and allow to check for each entry, but also wildcards are allowed. I think for listing roles this would/may be a bit much given we have 600+ API by now. we could just iterate over all API and do a check for the caller to se if they are allowed, but if the list is more than the default eight roles, .... I agree with the use-case though ;) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
