Comment 3 for bug 1859759

Kristi: Running the openstack role command results in the following output: http://paste.openstack.org/show/788865/

(I have search/replaced a little; removing api-urls and similar, and adding bogus-values instead. I have also search/replaced usernames).

Manually deleting the user using curl seems to work fine (http://paste.openstack.org/show/788868/), so it might be a keystoneclient issue more than a keystone-server issue. The role-assignment gets removed with the curl-command.

Vishakha: As the bug initially states, the user is deleted from LDAP, while keystone still keeps an association between the now deleted user and an existing project. The bug is that this association cannot be deleted. The ID 0f9389d48ed88c24656981beb9605c56346bdbf3a90420a9628db62c1e6241e5 is correct, and that can be seen in line 62 of the paste as the openstack-command was able to find the deleted user's username (I have replaced it with REDACTED-USER-NAME).