feat(policy): allow creator to view or delete the certificate

Change-Id: Ie78493c405d6b115ffa64775e6cbd0e8a0adaf7f
Signed-off-by: Sowmya Nethi <sowmya.kamavaram@rackspace.com>

skyline_apiserver/policy/manager/barbican.py

@@ -307,14 +307,14 @@ list_rules = (
     ),
     base.APIRule(
         name="container:get",
-        check_str=("True:%(enforce_new_defaults)s and (rule:container_project_admin or (rule:container_project_member and rule:container_owner) or (rule:container_project_member and  rule:container_is_not_private) or rule:container_acl_read)"),
+        check_str=("True:%(enforce_new_defaults)s and (rule:container_project_admin or (rule:container_project_member and rule:container_owner) or (rule:container_project_member and  rule:container_is_not_private) or rule:container_acl_read or rule:creator)"),
         description="Retrieves a single container.",
         scope_types=["project"],
         operations=[Operation(method="GET", path="/v1/containers/{container-id}")],
     ),
     base.APIRule(
         name="container:delete",
-        check_str=("True:%(enforce_new_defaults)s and (rule:container_project_admin or (rule:container_project_member and rule:container_owner) or (rule:container_project_member and  rule:container_is_not_private))"),
+        check_str=("True:%(enforce_new_defaults)s and (rule:container_project_admin or (rule:container_project_member and rule:container_owner) or (rule:container_project_member and  rule:container_is_not_private) or rule:creator)"),
         description="Deletes a container.",
         scope_types=["project"],
         operations=[Operation(method="DELETE", path="/v1/containers/{uuid}")],