The policy and policy endpoint APIs don't use default roles

Bug #1805409 reported by Lance Bragstad on 2018-11-27
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)

Bug Description

In Rocky, keystone implemented support to ensure at least three default roles were available [0]. The policy and policy endpoint APIs don't incorporate these defaults into its default policies [1][2], but it should.

However, both of these APIs are deprecated, which doesn't make this a high priority item. Opening this bug to be consistent in documenting gaps in default role implementations across keystone.


Changed in keystone:
status: New → Triaged
importance: Undecided → Wishlist
tags: added: default-roles policy
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers