Details
-
Improvement
-
Status: Open
-
Major
-
Resolution: Unresolved
-
1.2.0
-
None
-
None
Description
Before this patch, volume removeacl (almost) always returns success message, regardless of whether an actual ACL entry is removed or not:
bash-4.2$ ozone sh volume getacl vol2 [ { "type" : "USER", "name" : "testuser/scm@EXAMPLE.COM", "aclScope" : "ACCESS", "aclList" : [ "ALL" ] }, { "type" : "GROUP", "name" : "root", "aclScope" : "ACCESS", "aclList" : [ "ALL" ] } ] bash-4.2$ ozone sh volume removeacl -a=user:somenonexistentuser:a vol2 ACL user:somenonexistentuser:a[ACCESS] removed successfully. bash-4.2$ ozone sh volume getacl vol2 [ { "type" : "USER", "name" : "testuser/scm@EXAMPLE.COM", "aclScope" : "ACCESS", "aclList" : [ "ALL" ] }, { "type" : "GROUP", "name" : "root", "aclScope" : "ACCESS", "aclList" : [ "ALL" ] } ]
This isn't particularly useful since owners/admins still have to use getacl to check if an ACL is indeed removed via CLI. It makes more sense to just print out the ACL status after the operation.