[pve-devel] PVEAuditor - image

Guiseppin Thomas thomas82710 at gmail.com
Mon Jan 2 18:36:51 CET 2017


Hello,

I search to understand the function 'check_volume_access' L285:

https://git.proxmox.com/?p=pve-access-control.git;a=blob;f=PVE/RPCEnvironment.pm;h=3ec2c912d220498ca50303e23db5a25e0b67b0c1;hb=HEAD

    if ($vtype eq 'iso' || $vtype eq 'vztmpl') {
        # we simply allow access
    }

Why you don't test the others type like 'image', to allow at the Auditor
group a RO on the disk images ?

The objective is to get the disks informations with PVEAuditor or an 
other personnal role using Datastore.Audit.

Currently, we can read only the iso files and vztmpl, with / for root.

(api url :
https://proxmox.abc:8006/api2/json/nodes/pve1/storage/pve_1_sto/content)

Thx,

Thomas.





More information about the pve-devel mailing list