yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1201374] Re: Assignment link in Get /role_assignments not correct for expanded group entries

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Thierry Carrez <thierry.carrez+lp@xxxxxxxxx>
Date: Thu, 05 Sep 2013 09:25:39 -0000
Reply-to: Bug 1201374 <1201374@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: keystone
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1201374

Title:
  Assignment link in Get /role_assignments not correct for expanded
  group entries

Status in OpenStack Identity (Keystone):
  Fix Released

Bug description:
  If you call 'GET /role_assignments?effective', then any group grants
  are expanded in the response to be user grants for each member of the
  group.  Although these entries are correctly returned, the assignment
  link in such entities does not match the spec.  It should return
  (something like):

  http://identity:35357/v3/projects/proj_id/groups/group_id/roles/role_id

  but instead in returns:

  http://identity:35357/v3/projects/proj_id/users/user_id/roles/role_id

  Calling GET /role_assignments without the 'effective' flag returns the
  correct link

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1201374/+subscriptions