Token for trust does not expand implied roles
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Adam Young |
Bug Description
def test_trusts_
# Create a trustee and assign the prior role to her
trustee = unit.create_
ref = unit.new_trust_ref(
r = self.post(
trust = r.result['trust']
# Only the role that was specified is in the trust, NOT implies roles
# Authenticate as the trustee
auth_data = self.build_
r = self.v3_
token = r.result['token']
# This fails
Changed in keystone: | |
milestone: | none → mitaka-3 |
importance: | Undecided → Medium |
Changed in keystone: | |
status: | New → In Progress |
Issue is due to the trust api maintaining its own list of roles, which is then called from the auth/controller