@eblock .Is it something to do with policy.json file ?
openstack volume service list
+------------------+-----------------------+------+---------+-------+----------------------------+
| Binary | Host | Zone | Status | State | Updated At |
+------------------+-----------------------+------+---------+-------+----------------------------+
| cinder-volume | cinder@backend1 | nova | enabled | up | 2019-01-30T09:47:43.000000 |
| cinder-scheduler | FGSUSSUCTR01 | nova | enabled | up | 2019-01-30T09:47:44.000000 |
| cinder-backup | FGSUSSUCTR01 | nova | enabled | up | 2019-01-30T09:47:51.000000
service cinder-backup status
● cinder-backup.service - OpenStack Cinder Backup
Loaded: loaded (/lib/systemd/system/cinder-backup.service; enabled; vendor preset: enabled)
Active: active (running) since Tue 2019-01-29 12:08:44 UTC; 21h ago
Process: 25686 ExecStartPre=/bin/chown cinder:adm /var/log/cinder (code=exited, status=0/SUCCESS)
Process: 25680 ExecStartPre=/bin/chown cinder:cinder /var/lock/cinder /var/lib/cinder (code=exited, status=0/SUCCESS)
Process: 25674 ExecStartPre=/bin/mkdir -p /var/lock/cinder /var/log/cinder /var/lib/cinder (code=exited, status=0/SUCCESS)
Main PID: 25691 (cinder-backup)
Tasks: 22
Memory: 4.6G
CPU: 14min 37.243s
CGroup: /system.slice/cinder-backup.service
├─25691 /usr/bin/python /usr/bin/cinder-backup --config-file=/etc/cinder/cinder.conf --log-file=/var/log/cinder/cinder-bac
└─43345 /usr/bin/python2.7 /usr/bin/privsep-helper --config-file /etc/cinder/cinder.conf --privsep_context os_brick.privil
@eblock Please see the output as below from cinder and Openstack dashboard respectively
root@FGSUSSUCTR01:~# grep backup /etc/cinder/policy.json
"volume_extension:backup_admin_actions:reset_status": "rule:admin_api",
"volume_extension:backup_admin_actions:force_delete": "rule:admin_api",
"backup:create" : "",
"backup:delete": "rule:admin_or_owner",
"backup:get": "rule:admin_or_owner",
"backup:get_all": "rule:admin_or_owner",
"backup:restore": "rule:admin_or_owner",
"backup:backup-import": "rule:admin_api",
"backup:backup-export": "rule:admin_api",
"backup:update": "rule:admin_or_owner",
"backup:backup_project_attribute": "rule:admin_api",
root@FGSUSSUCTR01:~#
more ./usr/share/openstack-dashboard/openstack_dashboard/conf/cinder_policy.json |grep -i backup
"volume_extension:backup_admin_actions:reset_status": "rule:admin_api",
"volume_extension:backup_admin_actions:force_delete": "rule:admin_api",
"backup:create" : "",
"backup:delete": "rule:admin_or_owner",
"backup:get": "rule:admin_or_owner",
"backup:get_all": "rule:admin_or_owner",
"backup:restore": "rule:admin_or_owner",
"backup:backup-import": "rule:admin_api",
"backup:backup-export": "rule:admin_api",
What's the output of
grep backup /etc/cinder/policy.json
andgrep backup /srv/www/openstack-dashboard/openstack_dashboard/conf/cinder_policy.json
? These are the policies used by openstack. The respective files in your environment could be located elsewhere.I can create and list backups as non-admin user, but in Horizon I don't have all these option, e.g. I can't create a backup, only delete one that I created in CLI.
I cant create or list backup as non-admin user either from command line or from Horizon.
Which openstack version are you running? Are the packages consistent in their versions? I run Ocata and these are my versions (incomplete):
control:~ # rpm -qa | grep cinder openstack-cinder-backup-10.0.7~dev1-1.2.noarch python-cinder-10.0.7~dev1-1.2.noarch python-cinderclient-1.11.0-3.3.noarch
@eblock yes mine is also ocata on ubuntu