Keystone doesn't allow a token to be scoped to multiple tenants
Bug #902357 reported by
Joe Savak
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Expired
|
Medium
|
Unassigned |
Bug Description
The XSD indicates that tenant is a subset of tenants, but a token can only be scoped to one tenant instead of an array. I would expect that a token could be scoped to multiple tenants
Changed in keystone: | |
importance: | Undecided → Medium |
Changed in keystone: | |
status: | Expired → Incomplete |
tags: | added: legacy |
Changed in keystone: | |
status: | Incomplete → Expired |
To post a comment you must log in.
Can you clarify which XSD you are referring to and maybe post an example call you expect to be able to make (or response you expect to get).
Note: the API and Keystone are two different things. The spec allows for scoping to multiple tenants (and Rackspace's implementation does that), but Keystone does not support multiple tenants in one token.