Comment 7 for bug 1450344

Thanks Henry and Morgan for looking into this.

Henry, you are absolutely correct, we started off setting default domain with LDAP and grew our installation to add specific domains with LDAP, the main reason behind moving towards this kind of architecture is to isolate users.

Before using Domain Specific Backends:

openstack user list --domain default shows the entire list of users from user_tree.
openstack user list --domain DomainA again shows the entire list of users from default domain.

After migrating to Domain Specific Backends:

openstack user list --domain default shows the entire list of users from user_tree.
openstack user list --domain DomainA shows limited set of users from user_tree associated with DomainA.

Our customers are extremely happy with this feature and I appreciate all your efforts for building it.

For now, I have worked around this issue by modifying the if condition:

 if new_config['driver'].is_sql:

to:

if (new_config['driver'].is_sql and (self.driver.is_sql or self._any_sql)):

Cheers
Priti