yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #64276
[Bug 1693690] [NEW] keystone fedeartion mapping rules with blacklist
Public bug reported:
When I create a rule like:
[
{
"local": [
{
"user": {
"name": "user_test",
"id": "faced82c29e24b10b14ea64366b4653d"
},
"group": {
"name":"group1",
"domain": {
"name":"domain1"
}
}
}
],
"remote":[
{
"type":"openstack_user",
"blacklist": [
"bob"
]
}
]
}
]
And 'bob' logins to the SP, the result is OK. But actually, bob is in
the blacklist, he should has no right to login to SP. ('bob' is a user
of idp.)
** Affects: keystone
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1693690
Title:
keystone fedeartion mapping rules with blacklist
Status in OpenStack Identity (keystone):
New
Bug description:
When I create a rule like:
[
{
"local": [
{
"user": {
"name": "user_test",
"id": "faced82c29e24b10b14ea64366b4653d"
},
"group": {
"name":"group1",
"domain": {
"name":"domain1"
}
}
}
],
"remote":[
{
"type":"openstack_user",
"blacklist": [
"bob"
]
}
]
}
]
And 'bob' logins to the SP, the result is OK. But actually, bob is in
the blacklist, he should has no right to login to SP. ('bob' is a user
of idp.)
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1693690/+subscriptions
Follow ups
