OpenStack Identity (keystone)

keystone v3 example policy file should allow domain admin to get it's current domain

Bug #1480480 reported by Dan Nguyen on 2015-07-31

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Wishlist	Dan Nguyen	OpenStack Identity (keystone) 8.0.0 "liberty"

The example keystone v3 policy file should allow domain admin to get it's domain.

- "identity:get_domain": "rule:cloud_admin",
+ "identity:get_domain": "rule:cloud_admin or rule:admin_and_matching_domain_id",

From horizon this will give the Domain Admin a read only view of the Domain containing the following data.

Name Description Domain ID Enabled

Dan Nguyen (daniel-a-nguyen) on 2015-07-31

Changed in keystone:
assignee:	nobody → Dan Nguyen (daniel-a-nguyen)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-07-31: Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/208082

Changed in keystone:
status:	New → In Progress

Dolph Mathews (dolph) on 2015-08-03

Changed in keystone:
importance:	Undecided → Wishlist

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-07: Fix merged to keystone (master)

commit 1d39b590b85874bedd52a3a11436c1bfe0119d40
Author: daniel-a-nguyen <email address hidden>
Date: Fri Jul 31 16:14:28 2015 -0700

Allow Domain Admin to get domain details

This will give Domain Admin the ability to retrieve the details
for it's domain.

Change-Id: Ia82aaa686a7381be0b3f46c1d90658c1f1e1167d
Closes-Bug: #1480480

Changed in keystone:
status:	In Progress → Fix Committed

Doug Hellmann (doug-hellmann) on 2015-09-03

Thierry Carrez (ttx) on 2015-10-15

Changed in keystone:
milestone:	liberty-3 → 8.0.0

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Bug watches keep track of this bug in other bug trackers.