yahoo-eng-team team mailing list archive

[Morgan Fainberg <morgan.fainberg@xxxxxxxxx>]

Public bug reported:

There has been some confusion about the Application Credential API.
Specifically that application credentials can be created even if the
auth method is not enabled. The request is to make the Application
Credential API return a 403 (Forbidden) if the auth method is not
enabled.

The source of this request comes from mnaser based upon conversations in
the #openstack-infra channel.

http://eavesdrop.openstack.org/irclogs/%23openstack-keystone
/%23openstack-keystone.2019-07-18.log.html#t2019-07-18T12:22:46

** Affects: keystone
     Importance: Wishlist
         Status: New


** Tags: rfe

** Tags added: rfe

** Changed in: keystone
   Importance: Undecided => Wishlist

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1837061

Title:
  RFE: Application Credential API (CRUD) to 403 if app-cred auth method
  not enabled

Status in OpenStack Identity (keystone):
  New

Bug description:
  There has been some confusion about the Application Credential API.
  Specifically that application credentials can be created even if the
  auth method is not enabled. The request is to make the Application
  Credential API return a 403 (Forbidden) if the auth method is not
  enabled.

  The source of this request comes from mnaser based upon conversations
  in the #openstack-infra channel.

  http://eavesdrop.openstack.org/irclogs/%23openstack-keystone
  /%23openstack-keystone.2019-07-18.log.html#t2019-07-18T12:22:46

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1837061/+subscriptions