Domain admin can't view roles while it can mangage domain/project roles
Bug #2059780 reported by
Takashi Kajinami
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
In Progress
|
Undecided
|
Takashi Kajinami |
Bug Description
Currently when scope is enforced, domain admin is allowed to manage role assignments for project or domain but domain admin can't view roles
To allow domain admin to actually manipulate role assignments, keystone should allow domain admin to view roles.
Changed in keystone: | |
assignee: | nobody → Takashi Kajinami (kajinamit) |
description: | updated |
description: | updated |
To post a comment you must log in.
Fix proposed to branch: master /review. opendev. org/c/openstack /keystone/ +/914759
Review: https:/