[pve-devel] [PATCH access-control] perms: fix wrong /pools entry in default set of ACL paths
Fabian Grünbichler
f.gruenbichler at proxmox.com
Wed Nov 8 11:29:29 CET 2023
/pools is not an allowed ACL path, so this would add a bogus entry into the
effective permissions in case something got propagated from /.
Signed-off-by: Fabian Grünbichler <f.gruenbichler at proxmox.com>
---
stumbled upon this while working on unrelated pool stuff..
src/PVE/RPCEnvironment.pm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/PVE/RPCEnvironment.pm b/src/PVE/RPCEnvironment.pm
index 5eb339a..646a9b9 100644
--- a/src/PVE/RPCEnvironment.pm
+++ b/src/PVE/RPCEnvironment.pm
@@ -242,7 +242,7 @@ sub get_effective_permissions {
'/access' => 1,
'/access/groups' => 1,
'/nodes' => 1,
- '/pools' => 1,
+ '/pool' => 1,
'/sdn' => 1,
'/storage' => 1,
'/vms' => 1,
--
2.39.2
More information about the pve-devel
mailing list