keystone/api-ref/source/v3/domains.inc

.. -*- rst -*-

=======================================
Domains (domains, users, groups, roles)
=======================================

A domain is a collection of users, groups, and projects. Each group
and project is owned by exactly one domain.

Each domain defines a namespace where certain API-visible name
attributes exist, which affects whether those names must be
globally unique or unique within that domain. In the Identity API,
the uniqueness of these attributes is as follows:

- *Domain name*. Globally unique across all domains.

- *Role name*. Globally unique across all domains.

- *User name*. Unique within the owning domain.

- *Project name*. Unique within the owning domain.

- *Group name*. Unique within the owning domain.


List domains
============

.. rest_method::  GET /v3/domains

Lists all domains.

Normal response codes: 200
Error response codes:413,405,404,403,401,400,503,

Request
-------

.. rest_parameters:: parameters.yaml

   - name: name
   - enabled: enabled

Response Parameters
-------------------

.. rest_parameters:: parameters.yaml

   - name: name
   - links: links
   - enabled: enabled
   - domains: domains
   - id: id
   - description: description

Response Example
----------------

.. literalinclude:: ./samples/admin/domains-list-response.json
   :language: javascript


Create domain
=============

.. rest_method::  POST /v3/domains

Creates a domain.

Error response codes:201,413,415,405,404,403,401,400,503,409,

Request
-------

.. rest_parameters:: parameters.yaml

   - domain: domain
   - enabled: enabled
   - description: description
   - name: name

Request Example
---------------

.. literalinclude:: ./samples/admin/domain-create-request.json
   :language: javascript

Response Parameters
-------------------

.. rest_parameters:: parameters.yaml

   - domain: domain
   - name: name
   - links: links
   - enabled: enabled
   - id: id
   - description: description


Show domain details
===================

.. rest_method::  GET /v3/domains/{domain_id}

Shows details for a domain.

Normal response codes: 200
Error response codes:413,405,404,403,401,400,503,

Request
-------

.. rest_parameters:: parameters.yaml

   - domain_id: domain_id

Response Parameters
-------------------

.. rest_parameters:: parameters.yaml

   - domain: domain
   - name: name
   - links: links
   - enabled: enabled
   - id: id
   - description: description

Response Example
----------------

.. literalinclude:: ./samples/admin/domain-show-response.json
   :language: javascript


Update domain
=============

.. rest_method::  PATCH /v3/domains/{domain_id}

Updates a domain.

Normal response codes: 200
Error response codes:413,415,405,404,403,401,400,503,409,

Request
-------

.. rest_parameters:: parameters.yaml

   - domain: domain
   - enabled: enabled
   - description: description
   - name: name
   - domain_id: domain_id

Request Example
---------------

.. literalinclude:: ./samples/admin/domain-update-request.json
   :language: javascript

Response Parameters
-------------------

.. rest_parameters:: parameters.yaml

   - domain: domain
   - name: name
   - links: links
   - enabled: enabled
   - id: id
   - description: description

Response Example
----------------

.. literalinclude:: ./samples/admin/domain-update-response.json
   :language: javascript


Delete domain
=============

.. rest_method::  DELETE /v3/domains/{domain_id}

Deletes a domain.

To minimize the risk of accidentally deleting a domain, you must
first disable the domain by using the update domain method.

When you delete a domain, this call also deletes all entities owned
by it, such as users, groups, and projects, and any credentials and
granted roles that relate to those entities.

(Since v3.6) The deletion of a non-leaf domain in a domain
hierarchy tree is not allowed and fails with a ``Bad Request
(400)`` response code.

If you try to delete an enabled domain, this call returns the
``Forbidden (403)`` response code.

Error response codes:204,413,415,405,404,403,401,400,503,409,

Request
-------

.. rest_parameters:: parameters.yaml

   - domain_id: domain_id
Migrate identity /v3 docs from api-ref repo Docs at [1] have already been converted from WADL (SGML / XML) to RST using fairy-slipper [2]. This commit polish the results from the conversion and migrate the docs to our repository under 'api-ref/source' directory. In addition, it added missing descriptions for access_token_id and consumer_id to 'parameters.yaml'. Polishing the generated RST files include: - Removing unnecessary blank lines; - Removing empty references. Polishing the generated RST files do not include: - Modifying their content; - Modifying file names; - Wrapping lines at the maximum of 79 chars. Updating the documentation will be done after this migration step. This change also adds a tox environment to build the docs using sphinx under 'api-ref/build', which in turn is added to '.gitignore'. Lastly, 'os-api-ref' is added as a test requirement. It provides the sphinx stanzas rest_method and rest_parameter, used to define OpenStack APIs in RST docs. [1] https://github.com/openstack/api-site/tree/master/api-ref/source/identity/v3 [2] https://github.com/russell/fairy-slipper Change-Id: If1b9a3e1b2e4ea7211c337071254c26b881893a3 2016-05-23 18:07:59 -03:00			`.. -- rst --`

			`=======================================`
			`Domains (domains, users, groups, roles)`
			`=======================================`

			`A domain is a collection of users, groups, and projects. Each group`
			`and project is owned by exactly one domain.`

			`Each domain defines a namespace where certain API-visible name`
			`attributes exist, which affects whether those names must be`
			`globally unique or unique within that domain. In the Identity API,`
			`the uniqueness of these attributes is as follows:`

			`- Domain name. Globally unique across all domains.`

			`- Role name. Globally unique across all domains.`

			`- User name. Unique within the owning domain.`

			`- Project name. Unique within the owning domain.`

			`- Group name. Unique within the owning domain.`


			`List domains`
			`============`

			`.. rest_method:: GET /v3/domains`

			`Lists all domains.`

			`Normal response codes: 200`
			`Error response codes:413,405,404,403,401,400,503,`

			`Request`
			`-------`

			`.. rest_parameters:: parameters.yaml`

			`- name: name`
			`- enabled: enabled`

			`Response Parameters`
			`-------------------`

			`.. rest_parameters:: parameters.yaml`

			`- name: name`
			`- links: links`
			`- enabled: enabled`
			`- domains: domains`
			`- id: id`
			`- description: description`

			`Response Example`
			`----------------`

			`.. literalinclude:: ./samples/admin/domains-list-response.json`
			`:language: javascript`


			`Create domain`
			`=============`

			`.. rest_method:: POST /v3/domains`

			`Creates a domain.`

			`Error response codes:201,413,415,405,404,403,401,400,503,409,`

			`Request`
			`-------`

			`.. rest_parameters:: parameters.yaml`

			`- domain: domain`
			`- enabled: enabled`
			`- description: description`
			`- name: name`

			`Request Example`
			`---------------`

			`.. literalinclude:: ./samples/admin/domain-create-request.json`
			`:language: javascript`

			`Response Parameters`
			`-------------------`

			`.. rest_parameters:: parameters.yaml`

			`- domain: domain`
			`- name: name`
			`- links: links`
			`- enabled: enabled`
			`- id: id`
			`- description: description`


			`Show domain details`
			`===================`

			`.. rest_method:: GET /v3/domains/{domain_id}`

			`Shows details for a domain.`

			`Normal response codes: 200`
			`Error response codes:413,405,404,403,401,400,503,`

			`Request`
			`-------`

			`.. rest_parameters:: parameters.yaml`

			`- domain_id: domain_id`

			`Response Parameters`
			`-------------------`

			`.. rest_parameters:: parameters.yaml`

			`- domain: domain`
			`- name: name`
			`- links: links`
			`- enabled: enabled`
			`- id: id`
			`- description: description`

			`Response Example`
			`----------------`

			`.. literalinclude:: ./samples/admin/domain-show-response.json`
			`:language: javascript`


			`Update domain`
			`=============`

			`.. rest_method:: PATCH /v3/domains/{domain_id}`

			`Updates a domain.`

			`Normal response codes: 200`
			`Error response codes:413,415,405,404,403,401,400,503,409,`

			`Request`
			`-------`

			`.. rest_parameters:: parameters.yaml`

			`- domain: domain`
			`- enabled: enabled`
			`- description: description`
			`- name: name`
			`- domain_id: domain_id`

			`Request Example`
			`---------------`

			`.. literalinclude:: ./samples/admin/domain-update-request.json`
			`:language: javascript`

			`Response Parameters`
			`-------------------`

			`.. rest_parameters:: parameters.yaml`

			`- domain: domain`
			`- name: name`
			`- links: links`
			`- enabled: enabled`
			`- id: id`
			`- description: description`

			`Response Example`
			`----------------`

			`.. literalinclude:: ./samples/admin/domain-update-response.json`
			`:language: javascript`


			`Delete domain`
			`=============`

			`.. rest_method:: DELETE /v3/domains/{domain_id}`

			`Deletes a domain.`

			`To minimize the risk of accidentally deleting a domain, you must`
			`first disable the domain by using the update domain method.`

			`When you delete a domain, this call also deletes all entities owned`
			`by it, such as users, groups, and projects, and any credentials and`
			`granted roles that relate to those entities.`

			`(Since v3.6) The deletion of a non-leaf domain in a domain`
			hierarchy tree is not allowed and fails with a ``Bad Request
			(400)`` response code.

			`If you try to delete an enabled domain, this call returns the`
			``Forbidden (403)`` response code.

			`Error response codes:204,413,415,405,404,403,401,400,503,409,`

			`Request`
			`-------`

			`.. rest_parameters:: parameters.yaml`

			`- domain_id: domain_id`