openstack team mailing list archive

Thread
Date

Re: Federated Identity Management (bursting and zones)

To: "openstack@xxxxxxxxxxxxxxxxxxx" <openstack@xxxxxxxxxxxxxxxxxxx>
From: Jon Slenk <jslenk@xxxxxxxxxxxx>
Date: Wed, 30 Mar 2011 12:36:52 -0700
In-reply-to: <21560_1301511483_p2UIvwoI023861_60A3427EF882A54BA0A1971AE6EF038807B7ABE5@SAT2EXD02.RACKSPACE.CORP>

On Wed, Mar 30, 2011 at 11:57 AM, Sandy Walsh <sandy.walsh@xxxxxxxxxxxxx> wrote:
> http://wiki.openstack.org/ZonesOauth

"At this point the user will be asked to confirm the request (assuming
this is the first interaction the user has had with this Zone). So,
here's an authenticated user getting this seemingly random prompt
"ServiceProvider.DataCenter.Tower2 would like access to your
Permissions. Will you grant this?" Huh? That would make no sense. Even
less given the fact that the user had to authenticate to get to Zone A
in the first place (her credentials have already been given to the
client tool). "

I think that if the system used capabilities/ZBAC then there would be
no such weird prompting.

sincerely.

Follow ups

Re: Federated Identity Management (bursting and zones)
From: Sandy Walsh, 2011-03-30

References

Federated Identity Management (bursting and zones)
From: Sandy Walsh, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Jay Pipes, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Khaled Hussein, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Vishvananda Ishaya, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Sandy Walsh, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Sandy Walsh, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Soren Hansen, 2011-03-28
Re: Federated Identity Management (bursting and zones)
From: Sandy Walsh, 2011-03-30