Keystone doesn't allow a token to be scoped to multiple tenants
Bug #902357 reported by
Joe Savak
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Identity (keystone) |
Expired
|
Medium
|
Unassigned | ||
Bug Description
The XSD indicates that tenant is a subset of tenants, but a token can only be scoped to one tenant instead of an array. I would expect that a token could be scoped to multiple tenants
| Changed in keystone: | |
| importance: | Undecided → Medium |
Revision history for this message
| Ziad Sawalha (ziad-sawalha) wrote | #1 |
| Changed in keystone: | |
| status: | New → Incomplete |
Revision history for this message
| Joe Savak (jsavak) wrote | #2 |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #3 |
| Changed in keystone: | |
| status: | Incomplete → Expired |
| Changed in keystone: | |
| status: | Expired → Incomplete |
| tags: | added: legacy |
| Changed in keystone: | |
| status: | Incomplete → Expired |
To post a comment you must log in.
Can you clarify which XSD you are referring to and maybe post an example call you expect to be able to make (or response you expect to get).
Note: the API and Keystone are two different things. The spec allows for scoping to multiple tenants (and Rackspace's implementation does that), but Keystone does not support multiple tenants in one token.