Bug 1334365 - [RFE] Domain Specific Roles
Summary: [RFE] Domain Specific Roles
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-keystone
Version: 9.0 (Mitaka)
Hardware: Unspecified
OS: Unspecified
Target Milestone: Upstream M3
: 11.0 (Ocata)
Assignee: John Dennis
QA Contact: Rodrigo Duarte
URL: https://blueprints.launchpad.net/keys...
Whiteboard: upstream_milestone_mitaka-3 upstream_...
Depends On:
Blocks: 1336839 1421551
TreeView+ depends on / blocked
Reported: 2016-05-09 12:43 UTC by Maxime Payant-Chartier
Modified: 2017-05-17 19:29 UTC (History)
11 users (show)

Fixed In Version: openstack-keystone-11.0.0-0.20170114233131.d6410bf.el7ost
Doc Type: Enhancement
Doc Text:
Clone Of:
Last Closed: 2017-05-17 19:29:41 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHEA-2017:1245 0 normal SHIPPED_LIVE Red Hat OpenStack Platform 11.0 Bug Fix and Enhancement Advisory 2017-05-17 23:01:50 UTC

Description Maxime Payant-Chartier 2016-05-09 12:43:49 UTC
Cloned from launchpad blueprint: https://blueprints.launchpad.net/keystone/+spec/domain-specific-roles

Support the concept of domain specific roles that allows a domain administrators to better model the role usage, and map a role name that is meaningful to them onto global roles that are referenced in policy files.

Comment 4 Adam Young 2016-08-12 15:01:11 UTC
So the OSP9 support in Keystone is there.  What is missing is the CLI support.  It was supposed to be done this release, but other priorities have bumped it.  DOmains specific roles can be managed only via Curl or the Python API.

Comment 10 errata-xmlrpc 2017-05-17 19:29:41 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.