Discussed on the IRC, and this is an expected behavior ** Changed in: neutron Status: New => Invalid
-- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to neutron. https://bugs.launchpad.net/bugs/1592270 Title: can get shared network/subnet, but fail to create port when fixed_ip is specified Status in neutron: Invalid Bug description: For user who doesn't have admin role or isn't shared network's owner, he / she can see shared network and related subnet, but fail to create port when specifying fixed_ips. Policy to allow GET, but disallow to create port when specified fixed_ips. #user can see share networks "get_network": "rule:admin_or_owner or rule:shared or rule:external or rule:context_is_advsvc", #user can see share subnets "get_subnet": "rule:admin_or_owner or rule:shared", #user won't be able to create port when specifying fixed_ips "create_port:fixed_ips": "rule:context_is_advsvc or rule:admin_or_network_owner", To manage notifications about this bug go to: https://bugs.launchpad.net/neutron/+bug/1592270/+subscriptions -- Mailing list: https://launchpad.net/~yahoo-eng-team Post to : yahoo-eng-team@lists.launchpad.net Unsubscribe : https://launchpad.net/~yahoo-eng-team More help : https://help.launchpad.net/ListHelp