yahoo-eng-team team mailing list archive

[Alvaro Lopez <1241482@xxxxxxxxxxxxxxxxxx>]

This is the expected behaviour (although not documented). See this
https://www.ibm.com/developerworks/community/blogs/e93514d3-c4f0-4aa0-8844-497f370090f5/entry/openstack_keystone_workflow_token_scoping?lang=en

You are requesting an uscoped token, that can be used to discover the
list of tenats that you are able to access.

** Changed in: keystone
       Status: In Progress => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1241482

Title:
  Authenticate to generate a token without  tenant  infos

Status in OpenStack Identity (Keystone):
  Invalid

Bug description:
  1.authenticate to generate a token without the tenantName or tenantId, as bellow:
  {
      "auth": {
          "passwordCredentials": {
              "username": "admin",
              "password": "secrete"
          },
      }
  }

  2.then got the result,as bellow:
  {
      "access": {
          "token": {
              "issued_at": "2013-10-18T08:42:26.380926",
              "expires": "2013-10-19T08:42:26Z",
              "id": "93b6bfb248d94ac7b926dc0df5de87df"
          },
          "serviceCatalog": [],
          "user": {
              "username": "admin",
              "roles_links": [],
              "id": "380b66e1c6d4462d932db4a1d001c005",
              "roles": [],
              "name": "admin"
          },
          "metadata": {
              "is_admin": 0,
              "roles": []
          }
      }
  }

  3.when use the token id(e.g.,create a tenant) ,  the Unauthorized
  exception raised.

  4.I think it's a bug, authenticate to generate a token without the
  tenantName or tenantId should raise Bad Request（ValidationError）
  exception,otherwise the token is unauthorized.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1241482/+subscriptions