[Pacemaker] crmsh dosn't respect the acl read permissions
emmanuel segura
emi2fast at gmail.com
Sun Jul 7 22:52:07 UTC 2013
Hello List
Maybe this is wrong the wrong list, but now i'm playing with pacemaker
1.10 and a i see the crmsh dosn't respeact the read permissions like i
show below
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[root at nod01 ~]# id watch
uid=505(watch) gid=100(users) groups=100(users),989(haclient)
[root at nod01 ~]# crm configure show | grep dc
dc-version="1.1.10-1.fc18-e04c603" \
dc-deadtime="30"
[root at nod01 ~]# su - watch
[watch at nod01 ~]$ crm configure property dc-deadtime="60"
[watch at nod01 ~]$ crm configure show | grep dc
dc-version="1.1.10-1.fc18-e04c603" \
dc-deadtime="60"
My acl
role monitor \
read cib
user watch \
role:monitor
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Thanks
--
esta es mi vida e me la vivo hasta que dios quiera
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clusterlabs.org/pipermail/pacemaker/attachments/20130708/59160155/attachment-0003.html>
More information about the Pacemaker
mailing list