openstack team mailing list archive

Thread
Date

Keystone: LDAP identity driver 'list resource' support

To: openstack@xxxxxxxxxxxxxxxxxxx
From: boden <boden@xxxxxxxxxxxxxxxxxx>
Date: Mon, 10 Sep 2012 11:29:43 -0400
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:15.0) Gecko/20120824 Thunderbird/15.0

I've been munking with the latest Keystone LDAP identity driver and
based on what I'm seeing the driver does not support the 'list' resource
based methods. For example 'list users', 'list tenants'...

For example, config your keystone.conf up to use an LDAP backend which
contains the supported DIT structure for the driver and then fire up
keystone. Hit keystone with a GET /users or GET /tenants request and
500/501 errors. Switch your identity driver back to the SQL identity
driver and retry -- all is well and you can list users and tenants.

Looking at the code it appears the ldap identity driver does not
implement the list_*() methods (list_users(), list_roles()...)

Follow ups

Re: Keystone: LDAP identity driver 'list resource' support
From: Adam Young, 2012-09-10