yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1413851] Re: Horizon Identity Projects Panel doesn't list projects when configured to Keystone v3 RBAC

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: OpenStack Infra <1413851@xxxxxxxxxxxxxxxxxx>
Date: Fri, 11 Mar 2016 22:20:16 -0000
Reply-to: Bug 1413851 <1413851@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Reviewed:  https://review.openstack.org/148082
Committed: https://git.openstack.org/cgit/openstack/horizon/commit/?id=2b846515f388278e2bf8d0198a4f821309e08e69
Submitter: Jenkins
Branch:    master

commit 2b846515f388278e2bf8d0198a4f821309e08e69
Author: daniel-a-nguyen <dan.nguyens.mail@xxxxxxxxx>
Date:   Sat Jan 17 19:19:37 2015 -0800

    Retrieve domain scoped token
    
    This patch supports using domain scoped tokens against keystone v3.
    
    Use Cases:
    
    Cloud Admin - view and manage identity resources across domains
    Domain Admin - view and manage identity resources in the domain logged in
    User - view identity project in the domain logged in
    
    Regression:
    
    Supports keystone v2 through local_settings.py configuration
    Supports keystone v3 with multidomain = False
    Supports keystone v3 with mulitdomain = True
    
    Relates to https://review.openstack.org/#/c/141153/
    
    Background on how to test is here
    https://wiki.openstack.org/wiki/Horizon/DomainWorkFlow
    
    Co-Authored-By: Brad Pokorny <Brad_Pokorny@xxxxxxxxxxxx>
    Co-Authored-By: Brian Tully <brian.tully@xxxxxx>
    Co-Authored-By: Michael Hagedorn <mike.hagedorn@xxxxxx>
    Co-Authored-By: woomatt <matt.wood@xxxxxx>
    
    Partially Implements: blueprint domain-scoped-tokens
    
    Closes-Bug: #1413851
    Change-Id: Iaa19bfef9b0c70304ff81d083c62b218b2d02479


** Changed in: horizon
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1413851

Title:
  Horizon Identity Projects Panel doesn't list projects when configured
  to Keystone v3 RBAC

Status in OpenStack Dashboard (Horizon):
  Fix Released

Bug description:
  Currently Horizon requires a domain scoped token to list projects when
  configured to use keystone v3's policy file.

  When a domain scoped token is available in the request session
  api.keystone.py  needs to correctly handle the token for Cloud Admin,
  Domain Admin and member Users.

To manage notifications about this bug go to:
https://bugs.launchpad.net/horizon/+bug/1413851/+subscriptions

References

[Bug 1413851] [NEW] Horizon Identity Projects Panel doesn't list projects when configured to Keystone v3 RBAC
From: Dan Nguyen, 2015-01-23