OS-EP-FILTER API doesn't use default roles
Bug #1818744 reported by
Lance Bragstad
This bug report is a duplicate of:
Bug #1818734: The endpoint group API doesn't use default roles.
Edit
Remove
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Triaged
|
Low
|
Unassigned |
Bug Description
In Rocky, keystone implemented support to ensure at least three default roles were available [0]. The OS-EP-FILTER API doesn't incorporate these defaults into its default policies [1], but it should. The association between projects and endpoints are system-specific actions, but it should be possible for system-members and system-readers to view those associations.
[0] http://
[1] http://
Changed in keystone: | |
status: | New → Triaged |
importance: | Undecided → Low |
tags: | added: default-roles policy |
To post a comment you must log in.