Tenant isolation admin accounts only get a role on the project
Bug #1494291 reported by
Andrea Frittoli
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tempest |
Fix Released
|
Medium
|
Andrea Frittoli |
Bug Description
Tenant isolation can generate admin accounts on the fly, however those accounts get the admin role assigned on the project only, and not on the domain.
This means that these isolated admin accounts are not able to obtain a domain scoped token, which is needed when using a v3 style policy file in keystone (https:/
Changed in tempest: | |
importance: | Undecided → Medium |
status: | New → Confirmed |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/226297
Review: https:/