openstack team mailing list archive

Thread
Date

Re: keystone unscoped token

To: heut2008 <heut2008@xxxxxxxxx>
From: Dolph Mathews <dolph.mathews@xxxxxxxxx>
Date: Tue, 6 Dec 2011 08:30:30 -0600
Cc: openstack@xxxxxxxxxxxxxxxxxxx
In-reply-to: <CAPP2CaUP0o9gb6yapjpKK7eUD5_e0E5UeUgFQMavE9=Z_1Vs5g@mail.gmail.com>
Sender: antiver@xxxxxxxxx

The unscoped token keystone returns to you allows you to call GET /tenants
and exchange your unscoped token for one scoped to a tenant. This is
documented in the API developer guide, but the following functional test
illustrates the flow from a client perspective pretty well:

keystone.test.functional.test_auth.TestServiceAuthentication
  test_user_auth_with_role_on_tenant()


Link:
https://github.com/openstack/keystone/blob/master/keystone/test/functional/test_auth.py
See line ~119

-Dolph

On Tue, Dec 6, 2011 at 5:34 AM, heut2008 <heut2008@xxxxxxxxx> wrote:

> hi,all
>
> when use crendentials to ask for  a unscoped token,should  keystone offers
>  more info such as endpoints and user info? is it a bug or for other use?
>
>
>
>
> _______________________________________________
> Mailing list: https://launchpad.net/~openstack
> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~openstack
> More help   : https://help.launchpad.net/ListHelp
>
>

References

keystone unscoped token
From: heut2008, 2011-12-06