[pve-devel] [PATCH access-control] perms: fix wrong /pools entry in default set of ACL paths

Fabian Grünbichler f.gruenbichler at proxmox.com
Wed Nov 8 11:29:29 CET 2023


/pools is not an allowed ACL path, so this would add a bogus entry into the
effective permissions in case something got propagated from /.

Signed-off-by: Fabian Grünbichler <f.gruenbichler at proxmox.com>
---
stumbled upon this while working on unrelated pool stuff..

 src/PVE/RPCEnvironment.pm | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/PVE/RPCEnvironment.pm b/src/PVE/RPCEnvironment.pm
index 5eb339a..646a9b9 100644
--- a/src/PVE/RPCEnvironment.pm
+++ b/src/PVE/RPCEnvironment.pm
@@ -242,7 +242,7 @@ sub get_effective_permissions {
 	'/access' => 1,
 	'/access/groups' => 1,
 	'/nodes' => 1,
-	'/pools' => 1,
+	'/pool' => 1,
 	'/sdn' => 1,
 	'/storage' => 1,
 	'/vms' => 1,
-- 
2.39.2






More information about the pve-devel mailing list