Public bug reported:
Project admins should be allowed to create, list, edit and delete users
in their domains. Here is the rule from the v3cloudsample policy file:
"admin_and_matching_target_user_domain_id": "rule:admin_required and
domain_id:%(target.user.domain_id)s",
"admin_and_matchi
Public bug reported:
When trying to create a trust on a project, I always get a "forbidden"
error. When creating a trust on a domain, the trust is created
successfully but then I get this error when trying to use it:
"Expecting to find id or name in project. The server could not comply
with the r
Public bug reported:
In token/provider.py, the following triggers an exception if revoke_api
is not loaded
if self.revoke_api is not None:
The fix is to set self.revoke_api to None in the init:
def __init__(self):
super(Manager, self).__init__(self.get_toke
Public bug reported:
In federation API doc:
https://github.com/openstack/identity-api/blob/master/openstack-identity-api/v3/src/markdown/identity-api-v3-os-federation-ext.md
Make a search for the string "an identity provers". It probably was
meant to be "an identity provider"...
** Affects: keys
Public bug reported:
The following blueprint is said to be implemented but it isn't:
https://blueprints.launchpad.net/keystone/+spec/no-check-id
If you try to add roles to a user that doesn't exist you get a 404:
{
"error": {
"code": 404,
"message": "Could not find user, 12345
Public bug reported:
Look in http://api.openstack.org/api-ref-identity.html
It lists the APIs to manage group roles on projects:
GET v3/projects/{project_id}/groups/{group_id}/roles Lists roles for a
project group.
PUT v3/projects/{project_id}/{role_id} Grants a role to a projec
Public bug reported:
When keystone is configured to use SSL and its certificates are not
signed by a trusted authority, all the keystone client commands return:
Authorization Failed: SSL exception connecting to
https://127.0.0.1:35357/v2.0/tokens
It would be better to instruct the user to pass t
Public bug reported:
To enable ssl in keystone, you have to uncomment the following lines in
kestone.conf:
#enable = True
#certfile = /etc/keystone/pki/certs/ssl_cert.pem
#keyfile = /etc/keystone/pki/private/ssl_key.pem
#ca_certs = /etc/keystone/pki/certs/cacert.pem
#ca_key = /etc/keystone/pki/pr
8 matches
Mail list logo