Keystone RBAC should support checking against query filter items
Bug #1126043 reported by
Henry Nash
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Identity (keystone) |
Fix Released
|
High
|
Henry Nash | ||
Bug Description
Now that Keystone supports RBAC, it needs to consider how cloud providers will want to match roles to apis. For example:
GET /users?
A cloud provider would want to be able to protect this with a role that a user had been granted on a "my domain".
| Changed in keystone: | |
| importance: | Undecided → High |
| assignee: | nobody → Henry Nash (henry-nash) |
| Changed in keystone: | |
| status: | New → Fix Committed |
| milestone: | none → grizzly-3 |
| Changed in keystone: | |
| status: | Fix Committed → Fix Released |
| Changed in keystone: | |
| milestone: | grizzly-3 → 2013.1 |
To post a comment you must log in.
