← Back to team overview

openstack team mailing list archive

Keystone: LDAP identity driver 'list resource' support

 

I've been munking with the latest Keystone LDAP identity driver and
based on what I'm seeing the driver does not support the 'list' resource
based methods. For example 'list users', 'list tenants'...

For example, config your keystone.conf up to use an LDAP backend which
contains the supported DIT structure for the driver and then fire up
keystone. Hit keystone with a GET /users or GET /tenants request and
500/501 errors. Switch your identity driver back to the SQL identity
driver and retry -- all is well and you can list users and tenants.

Looking at the code it appears the ldap identity driver does not
implement the list_*() methods (list_users(), list_roles()...)



Follow ups