commit 58a095b93e1e6f742e619a100e8cec693bc41dad
Author: Kun Huang <email address hidden>
Date: Tue Mar 26 13:20:09 2013 +0800
Improve swift's keystoneauth ACL support
Below three bug reports talk about one thing.
Current keystoneauth ACL supports as:
tenant_name:user_id ok
tenant_name:user_name no
tenant_name:* no
tenant_id:user_id ok
tenant_id:user_name no
tenant_id:* no
*:user_id ok
*:user_name no
*:* no
This patch will make all of above work fine.
Applying (tenant/user)name could let user put or get their data in a
more readable way. The tenant_name:* and *:user_name is suitable for
many usage.
note: to keep compatibility here add a new keystone.identity just for
authorize() itself and leave env['keystone.identity'] to other
middlerwares.
Reviewed: https:/ /review. openstack. org/22820 github. com/openstack/ swift/commit/ 58a095b93e1e6f7 42e619a100e8cec 693bc41dad
Committed: http://
Submitter: Jenkins
Branch: master
commit 58a095b93e1e6f7 42e619a100e8cec 693bc41dad
Author: Kun Huang <email address hidden>
Date: Tue Mar 26 13:20:09 2013 +0800
Improve swift's keystoneauth ACL support
Below three bug reports talk about one thing.
Current keystoneauth ACL supports as:
tenant_ name:user_ id ok name:user_ name no id:user_ id ok id:user_ name no
tenant_
tenant_name:* no
tenant_
tenant_
tenant_id:* no
*:user_id ok
*:user_name no
*:* no
This patch will make all of above work fine.
Applying (tenant/user)name could let user put or get their data in a
more readable way. The tenant_name:* and *:user_name is suitable for
many usage.
note: to keep compatibility here add a new keystone.identity just for identity' ] to other
authorize() itself and leave env['keystone.
middlerwares.
Fixes: bug #1020709 17f6a9072c67e9e cf69bfca77e
Fixes: bug #1075362
Fixes: bug #1155389
Change-Id: I9354dedaad8751