Hello community,
here is the log from the commit of package python-oslo.policy for
openSUSE:Factory checked in at 2018-09-07 15:39:00
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-oslo.policy (Old)
and /work/SRC/openSUSE:Factory/.python-oslo.policy.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-oslo.policy"
Fri Sep 7 15:39:00 2018 rev:8 rq:633104 version:1.37.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-oslo.policy/python-oslo.policy.changes
2018-03-19 23:36:14.665971822 +0100
+++
/work/SRC/openSUSE:Factory/.python-oslo.policy.new/python-oslo.policy.changes
2018-09-07 15:39:00.746561348 +0200
@@ -1,0 +2,21 @@
+Mon Sep 3 09:28:27 UTC 2018 - [email protected]
+
+- update to version 1.37.0
+ - Remove stale pip-missing-reqs tox test
+ - Update sphinxext to include scope_types in docs
+ - set default python to python3
+ - Fix document formatting
+ - Update reno for stable/queens
+ - Update links in README
+ - make the sphinxpolicygen extension handle multiple input/output files
+ - Render deprecated policy names when generating files
+ - Remove erroneous newline in sample generation
+ - Update documentation to include usage for new projects
+ - Include deprecated_reason when deprecated_rule is set
+ - Imported Translations from Zanata
+ - Trivial: Update pypi url to new url
+ - Updated from global requirements
+ - add lower-constraints job
+ - Include both new and deprecated rules in generated sample
+
+-------------------------------------------------------------------
Old:
----
oslo.policy-1.33.1.tar.gz
New:
----
oslo.policy-1.37.0.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-oslo.policy.spec ++++++
--- /var/tmp/diff_new_pack.pt5DAn/_old 2018-09-07 15:39:01.090560979 +0200
+++ /var/tmp/diff_new_pack.pt5DAn/_new 2018-09-07 15:39:01.090560979 +0200
@@ -17,34 +17,34 @@
Name: python-oslo.policy
-Version: 1.33.1
+Version: 1.37.0
Release: 0
Summary: OpenStack Oslo Policy library
License: Apache-2.0
Group: Development/Languages/Python
-Url: https://launchpad.net/oslo.policy
-Source0:
https://files.pythonhosted.org/packages/source/o/oslo.policy/oslo.policy-1.33.1.tar.gz
+URL: https://launchpad.net/oslo.policy
+Source0:
https://files.pythonhosted.org/packages/source/o/oslo.policy/oslo.policy-1.37.0.tar.gz
BuildRequires: openstack-macros
BuildRequires: python-devel
-BuildRequires: python2-PyYAML >= 3.10
-BuildRequires: python2-oslo.config >= 5.1.0
+BuildRequires: python2-PyYAML >= 3.12
+BuildRequires: python2-oslo.config >= 5.2.0
BuildRequires: python2-oslo.i18n >= 3.15.3
BuildRequires: python2-oslo.serialization >= 2.18.0
-BuildRequires: python2-oslotest >= 3.2.0
-BuildRequires: python2-pbr >= 2.0.0
+BuildRequires: python2-oslotest
+BuildRequires: python2-pbr
BuildRequires: python2-requests >= 2.14.2
-BuildRequires: python2-requests-mock >= 1.1.0
-BuildRequires: python3-PyYAML >= 3.10
+BuildRequires: python2-requests-mock
+BuildRequires: python3-PyYAML >= 3.12
BuildRequires: python3-devel
-BuildRequires: python3-oslo.config >= 5.1.0
+BuildRequires: python3-oslo.config >= 5.2.0
BuildRequires: python3-oslo.i18n >= 3.15.3
BuildRequires: python3-oslo.serialization >= 2.18.0
-BuildRequires: python3-oslotest >= 3.2.0
-BuildRequires: python3-pbr >= 2.0.0
+BuildRequires: python3-oslotest
+BuildRequires: python3-pbr
BuildRequires: python3-requests >= 2.14.2
-BuildRequires: python3-requests-mock >= 1.1.0
-Requires: python-PyYAML >= 3.10
-Requires: python-oslo.config >= 5.1.0
+BuildRequires: python3-requests-mock
+Requires: python-PyYAML >= 3.12
+Requires: python-oslo.config >= 5.2.0
Requires: python-oslo.i18n >= 3.15.3
Requires: python-oslo.serialization >= 2.18.0
Requires: python-requests >= 2.14.2
@@ -69,13 +69,13 @@
Summary: Documentation for the Oslo Policy library
Group: Documentation/HTML
BuildRequires: python-Sphinx
-BuildRequires: python-openstackdocstheme >= 1.18.1
+BuildRequires: python-openstackdocstheme
%description -n python-oslo.policy-doc
Documentation for the Oslo Policy library.
%prep
-%autosetup -p1 -n oslo.policy-1.33.1
+%autosetup -p1 -n oslo.policy-1.37.0
%py_req_cleanup
sed -i 's/^warning-is-error.*/warning-is-error = 0/g' setup.cfg
++++++ _service ++++++
--- /var/tmp/diff_new_pack.pt5DAn/_old 2018-09-07 15:39:01.110560958 +0200
+++ /var/tmp/diff_new_pack.pt5DAn/_new 2018-09-07 15:39:01.110560958 +0200
@@ -1,8 +1,8 @@
<services>
<service mode="disabled" name="renderspec">
- <param
name="input-template">https://raw.githubusercontent.com/openstack/rpm-packaging/stable/queens/openstack/oslo.policy/oslo.policy.spec.j2</param>
+ <param
name="input-template">https://raw.githubusercontent.com/openstack/rpm-packaging/stable/rocky/openstack/oslo.policy/oslo.policy.spec.j2</param>
<param name="output-name">python-oslo.policy.spec</param>
- <param
name="requirements">https://raw.githubusercontent.com/openstack/rpm-packaging/stable/queens/requirements.txt</param>
+ <param
name="requirements">https://raw.githubusercontent.com/openstack/oslo.policy/stable/rocky/requirements.txt</param>
<param name="changelog-email">[email protected]</param>
<param name="changelog-provider">gh,openstack,oslo.policy</param>
</service>
++++++ oslo.policy-1.33.1.tar.gz -> oslo.policy-1.37.0.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/.zuul.yaml
new/oslo.policy-1.37.0/.zuul.yaml
--- old/oslo.policy-1.33.1/.zuul.yaml 1970-01-01 01:00:00.000000000 +0100
+++ new/oslo.policy-1.37.0/.zuul.yaml 2018-06-05 20:03:29.000000000 +0200
@@ -0,0 +1,7 @@
+- project:
+ check:
+ jobs:
+ - openstack-tox-lower-constraints
+ gate:
+ jobs:
+ - openstack-tox-lower-constraints
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/AUTHORS
new/oslo.policy-1.37.0/AUTHORS
--- old/oslo.policy-1.33.1/AUTHORS 2018-01-08 15:14:01.000000000 +0100
+++ new/oslo.policy-1.37.0/AUTHORS 2018-06-05 20:06:26.000000000 +0200
@@ -1,5 +1,6 @@
Adam Young <[email protected]>
Adrian Vladu <[email protected]>
+Akihiro Motoki <[email protected]>
Akira Yoshiyama <[email protected]>
Alexander Gordeev <[email protected]>
Andreas Jaeger <[email protected]>
@@ -46,6 +47,7 @@
Joshua Harlow <[email protected]>
Julien Danjou <[email protected]>
Kamil Rykowski <[email protected]>
+Kenneth Giusti <[email protected]>
Kevin L. Mitchell <[email protected]>
Kirill Bespalov <[email protected]>
Kseniya Tychkova <[email protected]>
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/ChangeLog
new/oslo.policy-1.37.0/ChangeLog
--- old/oslo.policy-1.33.1/ChangeLog 2018-01-08 15:14:01.000000000 +0100
+++ new/oslo.policy-1.37.0/ChangeLog 2018-06-05 20:06:26.000000000 +0200
@@ -1,6 +1,44 @@
CHANGES
=======
+1.37.0
+------
+
+* Remove erroneous newline in sample generation
+* Update sphinxext to include scope\_types in docs
+
+1.36.0
+------
+
+* Fix document formatting
+* Include deprecated\_reason when deprecated\_rule is set
+* Include both new and deprecated rules in generated sample
+
+1.35.0
+------
+
+* Remove stale pip-missing-reqs tox test
+* make the sphinxpolicygen extension handle multiple input/output files
+* Update documentation to include usage for new projects
+* Trivial: Update pypi url to new url
+* set default python to python3
+* add lower-constraints job
+* Updated from global requirements
+* Update links in README
+
+1.34.0
+------
+
+* Imported Translations from Zanata
+* Imported Translations from Zanata
+* Update reno for stable/queens
+* Updated from global requirements
+* Imported Translations from Zanata
+* Updated from global requirements
+* Render deprecated policy names when generating files
+* Updated from global requirements
+* Updated from global requirements
+
1.33.1
------
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/PKG-INFO
new/oslo.policy-1.37.0/PKG-INFO
--- old/oslo.policy-1.33.1/PKG-INFO 2018-01-08 15:14:02.000000000 +0100
+++ new/oslo.policy-1.37.0/PKG-INFO 2018-06-05 20:06:27.000000000 +0200
@@ -1,18 +1,17 @@
Metadata-Version: 1.1
Name: oslo.policy
-Version: 1.33.1
+Version: 1.37.0
Summary: Oslo Policy library
Home-page: https://docs.openstack.org/oslo.policy/latest/
Author: OpenStack
Author-email: [email protected]
License: UNKNOWN
-Description-Content-Type: UNKNOWN
Description: ========================
Team and repository tags
========================
- .. image:: https://governance.openstack.org/badges/oslo.policy.svg
- :target: https://governance.openstack.org/reference/tags/index.html
+ .. image:: https://governance.openstack.org/tc/badges/oslo.policy.svg
+ :target:
https://governance.openstack.org/tc/reference/tags/index.html
.. Change things from this point on
@@ -21,11 +20,11 @@
=============
.. image:: https://img.shields.io/pypi/v/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Latest Version
.. image:: https://img.shields.io/pypi/dm/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Downloads
The Oslo Policy library provides support for RBAC policy enforcement
across
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/README.rst
new/oslo.policy-1.37.0/README.rst
--- old/oslo.policy-1.33.1/README.rst 2018-01-08 15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/README.rst 2018-06-05 20:03:29.000000000 +0200
@@ -2,8 +2,8 @@
Team and repository tags
========================
-.. image:: https://governance.openstack.org/badges/oslo.policy.svg
- :target: https://governance.openstack.org/reference/tags/index.html
+.. image:: https://governance.openstack.org/tc/badges/oslo.policy.svg
+ :target: https://governance.openstack.org/tc/reference/tags/index.html
.. Change things from this point on
@@ -12,11 +12,11 @@
=============
.. image:: https://img.shields.io/pypi/v/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Latest Version
.. image:: https://img.shields.io/pypi/dm/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Downloads
The Oslo Policy library provides support for RBAC policy enforcement across
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/RELEASENOTES.rst
new/oslo.policy-1.37.0/RELEASENOTES.rst
--- old/oslo.policy-1.33.1/RELEASENOTES.rst 1970-01-01 01:00:00.000000000
+0100
+++ new/oslo.policy-1.37.0/RELEASENOTES.rst 2018-06-05 20:06:27.000000000
+0200
@@ -0,0 +1,26 @@
+===========
+oslo.policy
+===========
+
+.. _oslo.policy_1.37.0:
+
+1.37.0
+======
+
+.. _oslo.policy_1.37.0_Bug Fixes:
+
+Bug Fixes
+---------
+
+.. releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml @
b'eb1546fdfc157ebce0d52cbee54e2898d13de245'
+
+- [`bug 1773473 <https://bugs.launchpad.net/oslo.policy/+bug/1773473>`_]
+ The ``sphinxext`` extension for rendering policy documentation now supports
+ ``scope_types`` attributes.
+
+.. releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
@ b'0f31938dd720015444e03f0056c0cfc0e4b8e932'
+
+- [`bug 1771442 <https://bugs.launchpad.net/oslo.policy/+bug/1771442>`_]
+ Policy rules that are deprecated for removal are now properly formatted
+ when rendering sample policy files for documentation.
+
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/doc/source/user/sphinxpolicygen.rst
new/oslo.policy-1.37.0/doc/source/user/sphinxpolicygen.rst
--- old/oslo.policy-1.33.1/doc/source/user/sphinxpolicygen.rst 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/doc/source/user/sphinxpolicygen.rst 2018-06-05
20:03:29.000000000 +0200
@@ -27,6 +27,11 @@
source directory (``app.srcdir``). If this option is not specified or is
invalid then the sample policy file generation will be skipped.
+ To handle cases where multiple files need to be generated, this
+ value can be a list of two-part tuples containing the path to the
+ configuration file and the base name for the output file (in this
+ case, ``sample_policy_basename`` should not be set).
+
``sample_policy_basename``
Base name of the output file. This name will be appended with a
``.policy.yaml.sample`` extension to generate the final output file and the
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/doc/source/user/usage.rst
new/oslo.policy-1.37.0/doc/source/user/usage.rst
--- old/oslo.policy-1.33.1/doc/source/user/usage.rst 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/doc/source/user/usage.rst 2018-06-05
20:03:29.000000000 +0200
@@ -14,6 +14,77 @@
from changing the way the library is imported, may need to make some extra
changes.
+Incorporating oslo.policy tooling
+---------------------------------
+
+The ``oslo.policy`` library offers a generator that projects can use to render
+sample policy files, check for redundant rules or policies, among other things.
+This is a useful tool not only for operators managing policies, but also
+developers looking to automate documentation describing the projects default
+policies.
+
+This part of the document describes how you can incorporate these features into
+your project. Let's assume we're working on an OpenStack-like project called
+``foo``. Policies for this service are registered in code in a common module of
+the project.
+
+First, you'll need to expose a couple of entry points in the project's
+``setup.cfg``::
+
+ [entry_points]
+ oslo.policy.policies =
+ foo = foo.common.policies:list_rules
+
+ oslo.policy.enforcer =
+ foo = foo.common.policy:get_enforcer
+
+The ``oslo.policy`` library uses the project namespace to call ``list_rules``,
+which should return a list of ``oslo.policy`` objects, either instances of
+``RuleDefault`` or ``DocumentedRuleDefault``.
+
+The second entry point allows ``oslo.policy`` to generate complete policy from
+overrides supplied by an existing policy file on disk. This is useful for
+operators looking to supply a policy file to Horizon or for security compliance
+complete with overrides important to that deployment. The ``get_enforcer``
+method should return an instance of ``oslo.policy.policy:Enforcer``. The
+information passed into the constructor of ``Enforcer`` should resolve any
+overrides on disk. An example for project ``foo`` might look like the
+following::
+
+ from oslo_config import cfg
+ from oslo_policy import policy
+
+ from foo.common import policies
+
+ CONF = cfg.CONF
+ _ENFORCER = None
+
+ def get_enforcer():
+ CONF([], project='foo')
+ global _ENFORCER
+ if not _ENFORCER:
+ _ENFORCER = policy.Enforcer(CONF)
+ _ENFORCER.register_defaults(policies.list_rules())
+ return _ENFORCER
+
+Please note that if you're incorporating this into a project that already uses
+``oslo.policy`` in some form or fashion, this might need to be changed to fit
+that project's structure accordingly.
+
+Next, you can create a configuration file for generating policies specifically
+for project ``foo``. This file could be called ``foo-policy-generator.conf``
+and it can be kept under version control within the project::
+
+ [DEFAULT]
+ output_file = etc/foo/policy.yaml.sample
+ namespace = foo
+
+If project ``foo`` uses tox, this makes it easier to create a specific tox
+environment for generating sample configuration files in ``tox.ini``::
+
+ [testenv:genpolicy]
+ commands = oslopolicy-sample-generator --config-file
etc/foo/policy.yaml.sample
+
Changes to Enforcer Initialization
----------------------------------
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/lower-constraints.txt
new/oslo.policy-1.37.0/lower-constraints.txt
--- old/oslo.policy-1.33.1/lower-constraints.txt 1970-01-01
01:00:00.000000000 +0100
+++ new/oslo.policy-1.37.0/lower-constraints.txt 2018-06-05
20:03:29.000000000 +0200
@@ -0,0 +1,59 @@
+alabaster==0.7.10
+appdirs==1.3.0
+Babel==2.3.4
+bandit==1.4.0
+coverage==4.0
+debtcollector==1.2.0
+docutils==0.11
+dulwich==0.15.0
+extras==1.0.0
+fixtures==3.0.0
+flake8==2.5.5
+gitdb==0.6.4
+GitPython==1.0.1
+hacking==0.12.0
+imagesize==0.7.1
+iso8601==0.1.11
+Jinja2==2.10
+keystoneauth1==3.4.0
+linecache2==1.0.0
+MarkupSafe==1.0
+mccabe==0.2.1
+mock==2.0.0
+monotonic==0.6
+mox3==0.20.0
+msgpack-python==0.4.0
+netaddr==0.7.18
+netifaces==0.10.4
+openstackdocstheme==1.18.1
+os-client-config==1.28.0
+oslo.config==5.2.0
+oslo.i18n==3.15.3
+oslo.serialization==2.18.0
+oslo.utils==3.33.0
+oslotest==3.2.0
+pbr==2.0.0
+pep8==1.5.7
+pyflakes==0.8.1
+Pygments==2.2.0
+pyparsing==2.1.0
+python-mimeparse==1.6.0
+python-subunit==1.0.0
+pytz==2013.6
+PyYAML==3.12
+reno==2.5.0
+requests==2.14.2
+requests-mock==1.1.0
+requestsexceptions==1.2.0
+rfc3986==0.3.1
+six==1.10.0
+smmap==0.9.0
+snowballstemmer==1.2.1
+Sphinx==1.6.5
+sphinxcontrib-websupport==1.0.1
+stevedore==1.20.0
+testrepository==0.0.18
+testtools==2.2.0
+traceback2==1.4.0
+unittest2==1.1.0
+wrapt==1.7.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo.policy.egg-info/PKG-INFO
new/oslo.policy-1.37.0/oslo.policy.egg-info/PKG-INFO
--- old/oslo.policy-1.33.1/oslo.policy.egg-info/PKG-INFO 2018-01-08
15:14:01.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo.policy.egg-info/PKG-INFO 2018-06-05
20:06:26.000000000 +0200
@@ -1,18 +1,17 @@
Metadata-Version: 1.1
Name: oslo.policy
-Version: 1.33.1
+Version: 1.37.0
Summary: Oslo Policy library
Home-page: https://docs.openstack.org/oslo.policy/latest/
Author: OpenStack
Author-email: [email protected]
License: UNKNOWN
-Description-Content-Type: UNKNOWN
Description: ========================
Team and repository tags
========================
- .. image:: https://governance.openstack.org/badges/oslo.policy.svg
- :target: https://governance.openstack.org/reference/tags/index.html
+ .. image:: https://governance.openstack.org/tc/badges/oslo.policy.svg
+ :target:
https://governance.openstack.org/tc/reference/tags/index.html
.. Change things from this point on
@@ -21,11 +20,11 @@
=============
.. image:: https://img.shields.io/pypi/v/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Latest Version
.. image:: https://img.shields.io/pypi/dm/oslo.policy.svg
- :target: https://pypi.python.org/pypi/oslo.policy/
+ :target: https://pypi.org/project/oslo.policy/
:alt: Downloads
The Oslo Policy library provides support for RBAC policy enforcement
across
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo.policy.egg-info/SOURCES.txt
new/oslo.policy-1.37.0/oslo.policy.egg-info/SOURCES.txt
--- old/oslo.policy-1.33.1/oslo.policy.egg-info/SOURCES.txt 2018-01-08
15:14:02.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo.policy.egg-info/SOURCES.txt 2018-06-05
20:06:26.000000000 +0200
@@ -1,6 +1,7 @@
.coveragerc
.mailmap
.testr.conf
+.zuul.yaml
AUTHORS
CONTRIBUTING.rst
ChangeLog
@@ -8,6 +9,7 @@
LICENSE
README.rst
babel.cfg
+lower-constraints.txt
requirements.txt
setup.cfg
setup.py
@@ -63,16 +65,19 @@
oslo_policy/tests/test_sphinxext.py
oslo_policy/tests/test_sphinxpolicygen.py
oslo_policy/tests/token_fixture.py
+releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
releasenotes/notes/add-sphinxpolicygen-39e2f8fa24930b0c.yaml
releasenotes/notes/add_custom_rule_check_plugins-3c15c2c7ca5e.yaml
releasenotes/notes/add_reno-3b4ae0789e9c45b4.yaml
releasenotes/notes/enforce_scope_types-1e92f6a34e4173ef.yaml
+releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
releasenotes/notes/oslo-policy-descriptive-support-3ee688c5fa48d751.yaml
releasenotes/source/conf.py
releasenotes/source/index.rst
releasenotes/source/newton.rst
releasenotes/source/ocata.rst
releasenotes/source/pike.rst
+releasenotes/source/queens.rst
releasenotes/source/unreleased.rst
releasenotes/source/_static/.placeholder
releasenotes/source/_templates/.placeholder
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo.policy.egg-info/pbr.json
new/oslo.policy-1.37.0/oslo.policy.egg-info/pbr.json
--- old/oslo.policy-1.33.1/oslo.policy.egg-info/pbr.json 2018-01-08
15:14:01.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo.policy.egg-info/pbr.json 2018-06-05
20:06:26.000000000 +0200
@@ -1 +1 @@
-{"git_version": "4f68708", "is_release": true}
\ No newline at end of file
+{"git_version": "7a50c85", "is_release": true}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo.policy.egg-info/requires.txt
new/oslo.policy-1.37.0/oslo.policy.egg-info/requires.txt
--- old/oslo.policy-1.33.1/oslo.policy.egg-info/requires.txt 2018-01-08
15:14:01.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo.policy.egg-info/requires.txt 2018-06-05
20:06:26.000000000 +0200
@@ -1,7 +1,7 @@
requests>=2.14.2
-oslo.config>=5.1.0
+oslo.config>=5.2.0
oslo.i18n>=3.15.3
oslo.serialization!=2.19.1,>=2.18.0
-PyYAML>=3.10
+PyYAML>=3.12
six>=1.10.0
stevedore>=1.20.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo_policy/generator.py
new/oslo.policy-1.37.0/oslo_policy/generator.py
--- old/oslo.policy-1.33.1/oslo_policy/generator.py 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/generator.py 2018-06-05
20:03:29.000000000 +0200
@@ -138,22 +138,30 @@
'# DEPRECATED\n# "%(name)s" has been deprecated since '
'%(since)s.\n%(reason)s\n%(text)s'
) % {'name': default.name,
+ 'check_str': default.check_str,
'since': default.deprecated_since,
'reason': _format_help_text(default.deprecated_reason),
'text': text}
elif default.deprecated_rule:
- text = (
- '# DEPRECATED\n# "%(old_name)s":"%(old_check_str)s" has been '
+ # This issues a deprecation warning but aliases the old policy name
+ # with the new policy name for compatibility.
+ deprecated_text = (
+ 'DEPRECATED\n"%(old_name)s":"%(old_check_str)s" has been '
'deprecated since %(since)s in favor of '
- '"%(name)s":"%(check_str)s".\n'
- '%(reason)s\n%(text)s'
+ '"%(name)s":"%(check_str)s".\n%(reason)s'
) % {'old_name': default.deprecated_rule.name,
'old_check_str': default.deprecated_rule.check_str,
'since': default.deprecated_since,
'name': default.name,
'check_str': default.check_str,
- 'reason': _format_help_text(default.deprecated_reason),
- 'text': text}
+ 'reason': default.deprecated_reason}
+
+ text = (
+ '%(text)s%(deprecated_text)s\n"%(old_name)s": "rule:%(name)s"\n'
+ ) % {'text': text,
+ 'deprecated_text': _format_help_text(deprecated_text),
+ 'old_name': default.deprecated_rule.name,
+ 'name': default.name}
return text
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/oslo_policy/locale/en_GB/LC_MESSAGES/oslo_policy.po
new/oslo.policy-1.37.0/oslo_policy/locale/en_GB/LC_MESSAGES/oslo_policy.po
--- old/oslo.policy-1.33.1/oslo_policy/locale/en_GB/LC_MESSAGES/oslo_policy.po
2018-01-08 15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/locale/en_GB/LC_MESSAGES/oslo_policy.po
2018-06-05 20:03:29.000000000 +0200
@@ -1,19 +1,20 @@
# OpenStack Infra <[email protected]>, 2015. #zanata
# Andi Chandler <[email protected]>, 2016. #zanata
# Andi Chandler <[email protected]>, 2017. #zanata
+# Andi Chandler <[email protected]>, 2018. #zanata
msgid ""
msgstr ""
-"Project-Id-Version: oslo.policy 1.28.2.dev1\n"
+"Project-Id-Version: oslo.policy VERSION\n"
"Report-Msgid-Bugs-To: https://bugs.launchpad.net/openstack-i18n/\n";
-"POT-Creation-Date: 2017-10-04 14:01+0000\n"
+"POT-Creation-Date: 2018-02-07 21:57+0000\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
-"PO-Revision-Date: 2017-10-07 09:33+0000\n"
+"PO-Revision-Date: 2018-01-22 12:21+0000\n"
"Last-Translator: Andi Chandler <[email protected]>\n"
"Language-Team: English (United Kingdom)\n"
-"Language: en-GB\n"
-"X-Generator: Zanata 3.9.6\n"
+"Language: en_GB\n"
+"X-Generator: Zanata 4.3.3\n"
"Plural-Forms: nplurals=2; plural=(n != 1)\n"
#, python-format
@@ -69,6 +70,21 @@
msgid "The file that defines policies."
msgstr "The file that defines policies."
+msgid ""
+"This option controls whether or not to enforce scope when evaluating "
+"policies. If ``True``, the scope of the token used in the request is "
+"compared to the ``scope_types`` of the policy being enforced. If the scopes "
+"do not match, an ``InvalidScope`` exception will be raised. If ``False``, a "
+"message will be logged informing operators that policies are being invoked "
+"with mismatching scope."
+msgstr ""
+"This option controls whether or not to enforce scope when evaluating "
+"policies. If ``True``, the scope of the token used in the request is "
+"compared to the ``scope_types`` of the policy being enforced. If the scopes "
+"do not match, an ``InvalidScope`` exception will be raised. If ``False``, a "
+"message will be logged informing operators that policies are being invoked "
+"with mismatching scope."
+
#, python-format
msgid "Unable to access ssl cert_file : %s"
msgstr "Unable to access SSL cert_file : %s"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo_policy/policy.py
new/oslo.policy-1.37.0/oslo_policy/policy.py
--- old/oslo.policy-1.33.1/oslo_policy/policy.py 2018-01-08
15:11:45.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/policy.py 2018-06-05
20:03:29.000000000 +0200
@@ -37,24 +37,24 @@
In the policy language, each check is specified as a simple "a:b" pair that is
matched to the correct class to perform that check:
- +--------------------------------+------------------------------------------+
- | TYPE | SYNTAX |
- +================================+==========================================+
- |User's Role | role:admin |
- +--------------------------------+------------------------------------------+
- |Rules already defined on policy | rule:admin_required |
- +--------------------------------+------------------------------------------+
- |Against URLs¹ | http://my-url.org/check |
- +--------------------------------+------------------------------------------+
- |User attributes² | project_id:%(target.project.id)s |
- +--------------------------------+------------------------------------------+
- |Strings | - <variable>:'xpto2035abc' |
- | | - 'myproject':<variable> |
- +--------------------------------+------------------------------------------+
- | | - project_id:xpto2035abc |
- |Literals | - domain_id:20 |
- | | - True:%(user.enabled)s |
- +--------------------------------+------------------------------------------+
++--------------------------------+------------------------------------------+
+| TYPE | SYNTAX |
++================================+==========================================+
+|User's Role | role:admin |
++--------------------------------+------------------------------------------+
+|Rules already defined on policy | rule:admin_required |
++--------------------------------+------------------------------------------+
+|Against URLs¹ | http://my-url.org/check |
++--------------------------------+------------------------------------------+
+|User attributes² | project_id:%(target.project.id)s |
++--------------------------------+------------------------------------------+
+|Strings | - <variable>:'xpto2035abc' |
+| | - 'myproject':<variable> |
++--------------------------------+------------------------------------------+
+| | - project_id:xpto2035abc |
+|Literals | - domain_id:20 |
+| | - True:%(user.enabled)s |
++--------------------------------+------------------------------------------+
¹URL checking must return ``True`` to be valid
@@ -72,17 +72,17 @@
Operator precedence is below:
- +------------+-------------+-------------+
- | PRECEDENCE | TYPE | EXPRESSION |
- +============+=============+=============+
- | 4 | Grouping | (...) |
- +------------+-------------+-------------+
- | 3 | Logical NOT | not ... |
- +------------+-------------+-------------+
- | 2 | Logical AND | ... and ... |
- +------------+-------------+-------------+
- | 1 | Logical OR | ... or ... |
- +------------+-------------+-------------+
++------------+-------------+-------------+
+| PRECEDENCE | TYPE | EXPRESSION |
++============+=============+=============+
+| 4 | Grouping | (...) |
++------------+-------------+-------------+
+| 3 | Logical NOT | not ... |
++------------+-------------+-------------+
+| 2 | Logical AND | ... and ... |
++------------+-------------+-------------+
+| 1 | Logical OR | ... or ... |
++------------+-------------+-------------+
Operator with larger precedence number precedes others with smaller numbers.
@@ -123,9 +123,9 @@
Generic checks can be used to perform policy checks on the following user
attributes obtained through a token:
- - user_id
- - domain_id or project_id (depending on the token scope)
- - list of roles held for the given token scope
+- user_id
+- domain_id or project_id (depending on the token scope)
+- list of roles held for the given token scope
.. note::
Some resources which are exposed by the API do not support policy
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo_policy/sphinxext.py
new/oslo.policy-1.37.0/oslo_policy/sphinxext.py
--- old/oslo.policy-1.33.1/oslo_policy/sphinxext.py 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/sphinxext.py 2018-06-05
20:03:29.000000000 +0200
@@ -62,6 +62,11 @@
yield _indent(_indent('- **{}** ``{}``'.format(
operation['method'], operation['path'])))
+ if hasattr(rule, 'scope_types') and rule.scope_types is not None:
+ yield _indent(':Scope Types:')
+ for scope_type in rule.scope_types:
+ yield _indent(_indent('- **{}**'.format(scope_type)))
+
yield ''
if rule.description:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/oslo_policy/sphinxpolicygen.py
new/oslo.policy-1.37.0/oslo_policy/sphinxpolicygen.py
--- old/oslo.policy-1.33.1/oslo_policy/sphinxpolicygen.py 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/sphinxpolicygen.py 2018-06-05
20:03:29.000000000 +0200
@@ -28,9 +28,19 @@
"skipping sample policy generation")
return
- _generate_sample(app,
- app.config.policy_generator_config_file,
- app.config.sample_policy_basename)
+ if isinstance(app.config.policy_generator_config_file, list):
+ for config_file, base_name in app.config.policy_generator_config_file:
+ if base_name is None:
+ base_name = _get_default_basename(config_file)
+ _generate_sample(app, config_file, base_name)
+ else:
+ _generate_sample(app,
+ app.config.policy_generator_config_file,
+ app.config.sample_policy_basename)
+
+
+def _get_default_basename(config_file):
+ return os.path.splitext(os.path.basename(config_file))[0]
def _generate_sample(app, policy_file, base_name):
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/oslo_policy/tests/test_generator.py
new/oslo.policy-1.37.0/oslo_policy/tests/test_generator.py
--- old/oslo.policy-1.33.1/oslo_policy/tests/test_generator.py 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/tests/test_generator.py 2018-06-05
20:03:29.000000000 +0200
@@ -160,6 +160,90 @@
self.assertEqual(expected, stdout.getvalue())
+ def test_policies_deprecated_for_removal(self):
+ rule = policy.RuleDefault(
+ name='foo:post_bar',
+ check_str='role:fizz',
+ description='Create a bar.',
+ deprecated_for_removal=True,
+ deprecated_reason='This policy is not used anymore',
+ deprecated_since='N'
+ )
+ opts = {'rules': [rule]}
+
+ extensions = []
+ for name, opts, in opts.items():
+ ext = stevedore.extension.Extension(name=name, entry_point=None,
+ plugin=None, obj=opts)
+ extensions.append(ext)
+
+ test_mgr = stevedore.named.NamedExtensionManager.make_test_instance(
+ extensions=extensions, namespace=['rules']
+ )
+
+ expected = '''# DEPRECATED
+# "foo:post_bar" has been deprecated since N.
+# This policy is not used anymore
+# Create a bar.
+#"foo:post_bar": "role:fizz"
+
+'''
+ stdout = self._capture_stdout()
+ with mock.patch('stevedore.named.NamedExtensionManager',
+ return_value=test_mgr) as mock_ext_mgr:
+ generator._generate_sample(['rules'], output_file=None)
+ mock_ext_mgr.assert_called_once_with(
+ 'oslo.policy.policies', names=['rules'],
+ on_load_failure_callback=generator.on_load_failure_callback,
+ invoke_on_load=True
+ )
+ self.assertEqual(expected, stdout.getvalue())
+
+ def test_deprecated_policies_are_aliased_to_new_names(self):
+ deprecated_rule = policy.DeprecatedRule(
+ name='foo:post_bar',
+ check_str='role:fizz'
+ )
+ new_rule = policy.RuleDefault(
+ name='foo:create_bar',
+ check_str='role:fizz',
+ description='Create a bar.',
+ deprecated_rule=deprecated_rule,
+ deprecated_reason=(
+ 'foo:post_bar is being removed in favor of foo:create_bar'
+ ),
+ deprecated_since='N'
+ )
+ opts = {'rules': [new_rule]}
+
+ extensions = []
+ for name, opts in opts.items():
+ ext = stevedore.extension.Extension(name=name, entry_point=None,
+ plugin=None, obj=opts)
+ extensions.append(ext)
+ test_mgr = stevedore.named.NamedExtensionManager.make_test_instance(
+ extensions=extensions, namespace=['rules'])
+
+ expected = '''# Create a bar.
+#"foo:create_bar": "role:fizz"
+
+# DEPRECATED
+# "foo:post_bar":"role:fizz" has been deprecated since N in favor of
+# "foo:create_bar":"role:fizz".
+# foo:post_bar is being removed in favor of foo:create_bar
+"foo:post_bar": "rule:foo:create_bar"
+'''
+ stdout = self._capture_stdout()
+ with mock.patch('stevedore.named.NamedExtensionManager',
+ return_value=test_mgr) as mock_ext_mgr:
+ generator._generate_sample(['rules'], output_file=None)
+ mock_ext_mgr.assert_called_once_with(
+ 'oslo.policy.policies', names=['rules'],
+ on_load_failure_callback=generator.on_load_failure_callback,
+ invoke_on_load=True
+ )
+ self.assertEqual(expected, stdout.getvalue())
+
def test_empty_line_formatting(self):
rule = [policy.RuleDefault('admin', 'is_admin:True',
description='Check Summary \n'
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/oslo_policy/tests/test_sphinxext.py
new/oslo.policy-1.37.0/oslo_policy/tests/test_sphinxext.py
--- old/oslo.policy-1.33.1/oslo_policy/tests/test_sphinxext.py 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/tests/test_sphinxext.py 2018-06-05
20:03:29.000000000 +0200
@@ -71,3 +71,33 @@
My sample rule
""").lstrip(), results)
+
+ def test_with_scope_types(self):
+ operations = [
+ {'method': 'GET', 'path': '/foo'},
+ {'method': 'POST', 'path': '/some'}
+ ]
+ scope_types = ['bar']
+ rule = policy.DocumentedRuleDefault(
+ 'rule_a', '@', 'My sample rule', operations,
+ scope_types=scope_types
+ )
+
+ results = '\n'.join(list(sphinxext._format_policy_section(
+ 'foo', [rule]
+ )))
+
+ self.assertEqual(textwrap.dedent("""
+ foo
+ ===
+
+ ``rule_a``
+ :Default: ``@``
+ :Operations:
+ - **GET** ``/foo``
+ - **POST** ``/some``
+ :Scope Types:
+ - **bar**
+
+ My sample rule
+ """).lstrip(), results)
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/oslo_policy/tests/test_sphinxpolicygen.py
new/oslo.policy-1.37.0/oslo_policy/tests/test_sphinxpolicygen.py
--- old/oslo.policy-1.33.1/oslo_policy/tests/test_sphinxpolicygen.py
2018-01-08 15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/oslo_policy/tests/test_sphinxpolicygen.py
2018-06-05 20:03:29.000000000 +0200
@@ -50,3 +50,27 @@
sample.assert_called_once_with(args=[
'--config-file', '/opt/nova/nova.conf',
'--output-file', '/opt/nova/sample.policy.yaml'])
+
+ @mock.patch('os.path.isdir')
+ @mock.patch('os.path.isfile')
+ @mock.patch('oslo_policy.generator.generate_sample')
+ def test_sample_gen_with_multiple_config_files(self, sample, isfile,
+ isdir):
+ # Tests the scenario that policy_generator_config_file is a list
+ # of two-item tuples of the config file name and policy basename.
+ isfile.side_effect = [False, True] * 2
+ isdir.return_value = True
+
+ config = mock.Mock(policy_generator_config_file=[
+ ('nova.conf', 'nova'),
+ ('placement.conf', 'placement')])
+ app = mock.Mock(srcdir='/opt/nova', config=config)
+ sphinxpolicygen.generate_sample(app)
+
+ sample.assert_has_calls([
+ mock.call(args=[
+ '--config-file', '/opt/nova/nova.conf',
+ '--output-file', '/opt/nova/nova.policy.yaml.sample']),
+ mock.call(args=[
+ '--config-file', '/opt/nova/placement.conf',
+ '--output-file', '/opt/nova/placement.policy.yaml.sample'])])
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
new/oslo.policy-1.37.0/releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
---
old/oslo.policy-1.33.1/releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
1970-01-01 01:00:00.000000000 +0100
+++
new/oslo.policy-1.37.0/releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
2018-06-05 20:03:29.000000000 +0200
@@ -0,0 +1,6 @@
+---
+fixes:
+ - |
+ [`bug 1773473 <https://bugs.launchpad.net/oslo.policy/+bug/1773473>`_]
+ The ``sphinxext`` extension for rendering policy documentation now supports
+ ``scope_types`` attributes.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
new/oslo.policy-1.37.0/releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
---
old/oslo.policy-1.33.1/releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
1970-01-01 01:00:00.000000000 +0100
+++
new/oslo.policy-1.37.0/releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
2018-06-05 20:03:29.000000000 +0200
@@ -0,0 +1,6 @@
+---
+fixes:
+ - |
+ [`bug 1771442 <https://bugs.launchpad.net/oslo.policy/+bug/1771442>`_]
+ Policy rules that are deprecated for removal are now properly formatted
+ when rendering sample policy files for documentation.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/releasenotes/notes/reno.cache
new/oslo.policy-1.37.0/releasenotes/notes/reno.cache
--- old/oslo.policy-1.33.1/releasenotes/notes/reno.cache 1970-01-01
01:00:00.000000000 +0100
+++ new/oslo.policy-1.37.0/releasenotes/notes/reno.cache 2018-06-05
20:06:27.000000000 +0200
@@ -0,0 +1,27 @@
+---
+file-contents:
+ releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml:
+ fixes: ['[`bug 1773473
<https://bugs.launchpad.net/oslo.policy/+bug/1773473>`_]
+
+ The ``sphinxext`` extension for rendering policy documentation now
supports
+
+ ``scope_types`` attributes.
+
+ ']
+ releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml:
+ fixes: ['[`bug 1771442
<https://bugs.launchpad.net/oslo.policy/+bug/1771442>`_]
+
+ Policy rules that are deprecated for removal are now properly formatted
+
+ when rendering sample policy files for documentation.
+
+ ']
+notes:
+- files:
+ - - releasenotes/notes/add-scope-types-to-sphinxext-cacd845c4575e965.yaml
+ - !!binary |
+ ZWIxNTQ2ZmRmYzE1N2ViY2UwZDUyY2JlZTU0ZTI4OThkMTNkZTI0NQ==
+ - -
releasenotes/notes/fix-rendering-for-deprecated-rules-d465292e4155f483.yaml
+ - !!binary |
+ MGYzMTkzOGRkNzIwMDE1NDQ0ZTAzZjAwNTZjMGNmYzBlNGI4ZTkzMg==
+ version: 1.37.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/releasenotes/source/index.rst
new/oslo.policy-1.37.0/releasenotes/source/index.rst
--- old/oslo.policy-1.33.1/releasenotes/source/index.rst 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/releasenotes/source/index.rst 2018-06-05
20:03:29.000000000 +0200
@@ -6,6 +6,7 @@
:maxdepth: 1
unreleased
+ queens
pike
ocata
newton
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/oslo.policy-1.33.1/releasenotes/source/locale/en_GB/LC_MESSAGES/releasenotes.po
new/oslo.policy-1.37.0/releasenotes/source/locale/en_GB/LC_MESSAGES/releasenotes.po
---
old/oslo.policy-1.33.1/releasenotes/source/locale/en_GB/LC_MESSAGES/releasenotes.po
2018-01-08 15:11:31.000000000 +0100
+++
new/oslo.policy-1.37.0/releasenotes/source/locale/en_GB/LC_MESSAGES/releasenotes.po
2018-06-05 20:03:29.000000000 +0200
@@ -1,18 +1,19 @@
# Andi Chandler <[email protected]>, 2016. #zanata
# Andi Chandler <[email protected]>, 2017. #zanata
+# Andi Chandler <[email protected]>, 2018. #zanata
msgid ""
msgstr ""
"Project-Id-Version: oslo.policy Release Notes\n"
"Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2017-12-04 22:02+0000\n"
+"POT-Creation-Date: 2018-02-07 21:57+0000\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
-"PO-Revision-Date: 2017-12-05 10:32+0000\n"
+"PO-Revision-Date: 2018-02-06 11:15+0000\n"
"Last-Translator: Andi Chandler <[email protected]>\n"
"Language-Team: English (United Kingdom)\n"
-"Language: en-GB\n"
-"X-Generator: Zanata 3.9.6\n"
+"Language: en_GB\n"
+"X-Generator: Zanata 4.3.3\n"
"Plural-Forms: nplurals=2; plural=(n != 1)\n"
msgid "1.15.0"
@@ -24,10 +25,36 @@
msgid "1.29.0"
msgstr "1.29.0"
+msgid "1.33.0"
+msgstr "1.33.0"
+
msgid "1.9.0"
msgstr "1.9.0"
msgid ""
+"A new configuration option has been added to the ``[oslo_policy]`` group "
+"called ``enforce_scope``. When set to ``True``, oslo.policy will raise an "
+"``InvalidScope`` exception if the context passed into the enforce method "
+"doesn't match the policy's ``scope_types``. If ``False``, a warning will be "
+"logged for operators. Note that operators should only enable this option "
+"once they've audited their users to ensure system users have roles on the "
+"system. This could potentially prevent some users from being able to make "
+"system-level API calls. This will also give other services the flexibility "
+"to fix long-standing RBAC issues in OpenStack once they start introducing "
+"``scope_types`` for policies used in their service."
+msgstr ""
+"A new configuration option has been added to the ``[oslo_policy]`` group "
+"called ``enforce_scope``. When set to ``True``, oslo.policy will raise an "
+"``InvalidScope`` exception if the context passed into the enforce method "
+"doesn't match the policy's ``scope_types``. If ``False``, a warning will be "
+"logged for operators. Note that operators should only enable this option "
+"once they've audited their users to ensure system users have roles on the "
+"system. This could potentially prevent some users from being able to make "
+"system-level API calls. This will also give other services the flexibility "
+"to fix long-standing RBAC issues in OpenStack once they start introducing "
+"``scope_types`` for policies used in their service."
+
+msgid ""
"Add ``sphinxpolicygen`` Sphinx plugin, which can be used to generate a "
"sample policy file for use in documentation."
msgstr ""
@@ -75,6 +102,9 @@
msgid "Pike Series Release Notes"
msgstr "Pike Series Release Notes"
+msgid "Queens Series Release Notes"
+msgstr "Queens Series Release Notes"
+
msgid "Switch to reno for managing release notes."
msgstr "Switch to reno for managing release notes."
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/releasenotes/source/queens.rst
new/oslo.policy-1.37.0/releasenotes/source/queens.rst
--- old/oslo.policy-1.33.1/releasenotes/source/queens.rst 1970-01-01
01:00:00.000000000 +0100
+++ new/oslo.policy-1.37.0/releasenotes/source/queens.rst 2018-06-05
20:03:29.000000000 +0200
@@ -0,0 +1,6 @@
+===================================
+ Queens Series Release Notes
+===================================
+
+.. release-notes::
+ :branch: stable/queens
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/requirements.txt
new/oslo.policy-1.37.0/requirements.txt
--- old/oslo.policy-1.33.1/requirements.txt 2018-01-08 15:11:31.000000000
+0100
+++ new/oslo.policy-1.37.0/requirements.txt 2018-06-05 20:03:29.000000000
+0200
@@ -3,9 +3,9 @@
# process, which may cause wedges in the gate later.
requests>=2.14.2 # Apache-2.0
-oslo.config>=5.1.0 # Apache-2.0
+oslo.config>=5.2.0 # Apache-2.0
oslo.i18n>=3.15.3 # Apache-2.0
oslo.serialization!=2.19.1,>=2.18.0 # Apache-2.0
-PyYAML>=3.10 # MIT
+PyYAML>=3.12 # MIT
six>=1.10.0 # MIT
stevedore>=1.20.0 # Apache-2.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/test-requirements.txt
new/oslo.policy-1.37.0/test-requirements.txt
--- old/oslo.policy-1.33.1/test-requirements.txt 2018-01-08
15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/test-requirements.txt 2018-06-05
20:03:29.000000000 +0200
@@ -2,15 +2,15 @@
# of appearance. Changing the order has an impact on the overall integration
# process, which may cause wedges in the gate later.
hacking!=0.13.0,<0.14,>=0.12.0 # Apache-2.0
-oslotest>=1.10.0 # Apache-2.0
+oslotest>=3.2.0 # Apache-2.0
requests-mock>=1.1.0 # Apache-2.0
# computes code coverage percentages
coverage!=4.4,>=4.0 # Apache-2.0
# These are needed for docs generation
-openstackdocstheme>=1.17.0 # Apache-2.0
-sphinx>=1.6.2 # BSD
+openstackdocstheme>=1.18.1 # Apache-2.0
+sphinx!=1.6.6,!=1.6.7,>=1.6.2 # BSD
reno>=2.5.0 # Apache-2.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/oslo.policy-1.33.1/tox.ini
new/oslo.policy-1.37.0/tox.ini
--- old/oslo.policy-1.33.1/tox.ini 2018-01-08 15:11:31.000000000 +0100
+++ new/oslo.policy-1.37.0/tox.ini 2018-06-05 20:03:29.000000000 +0200
@@ -3,6 +3,7 @@
envlist = py35,py27,pep8,docs
[testenv]
+basepython = python3
install_command = pip install {opts} {packages}
deps =
-c{env:UPPER_CONSTRAINTS_FILE:https://git.openstack.org/cgit/openstack/requirements/plain/upper-constraints.txt}
@@ -10,6 +11,9 @@
-r{toxinidir}/requirements.txt
commands = python setup.py testr --slowest --testr-args='{posargs}'
+[testenv:py27]
+basepython = python2.7
+
[testenv:pep8]
deps =
-r{toxinidir}/test-requirements.txt
@@ -37,13 +41,11 @@
[hacking]
import_exceptions = oslo_policy._i18n
-[testenv:pip-missing-reqs]
-# do not install test-requirements as that will pollute the virtualenv for
-# determining missing packages
-# this also means that pip-missing-reqs must be installed separately, outside
-# of the requirements.txt files
-deps = pip_missing_reqs
-commands = pip-missing-reqs -d --ignore-module=oslo_policy*
--ignore-module=pkg_resources --ignore-file=oslo_policy/test.py
--ignore-file=oslo_policy/tests/* oslo_policy
-
[testenv:releasenotes]
commands = sphinx-build -a -E -W -d releasenotes/build/doctrees -b html
releasenotes/source releasenotes/build/html
+
+[testenv:lower-constraints]
+deps =
+ -c{toxinidir}/lower-constraints.txt
+ -r{toxinidir}/test-requirements.txt
+ -r{toxinidir}/requirements.txt
