You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This wording landed without comment as part of 7117ede (Expand on the
definition of our ops, 2015-10-13, #225). However, I'm not entirely
clear on the exception it's making. It may be trying to say something
like:
Just because you were authorized to manage that container when you
created it doesn't mean you're still authorized to perform operation
X on it now. Maybe you've lost privileges in the meantime.
But as far as compliance testing is concerned, the same test harness
will be calling 'create' and the subsequent operations. That harness
will be reporting MUST violations if the runtime refuses a subsequent
operation, and removing the access-control loophole makes it more
obvious that the runtime's refusal is non-compliant.
Signed-off-by: W. Trevor King <[email protected]>
Copy file name to clipboardExpand all lines: runtime.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,7 +2,7 @@
2
2
3
3
## <aname="runtimeScopeContainer" />Scope of a Container
4
4
5
-
Barring access control concerns, the entity using a runtime to create a container MUST be able to use the operations defined in this specification against that same container.
5
+
The entity using a runtime to create a container MUST be able to use the operations defined in this specification against that same container.
6
6
Whether other entities using the same, or other, instance of the runtime can see that container is out of scope of this specification.
0 commit comments