mirrors/etcd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

auth: do not allow update root role

Browse Source
This commit is contained in:
Xiang Li
2015-06-23 20:12:18 -07:00
parent c0b5cc6c52
commit 030d1bbf2d
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
etcdserver/auth/auth.go
View File

@ -338,6 +338,9 @@ func (s *Store) DeleteRole(name string) error {
}
func (s *Store) UpdateRole(role Role) (Role, error) {
if role.Role == RootRoleName {
return Role{}, authErr(http.StatusForbidden, "Cannot modify role %s: is root role.", role.Role)
}
old, err := s.GetRole(role.Role)
if err != nil {
if e, ok := err.(*etcderr.Error); ok {