openstack/keystone
Code Issues Proposed changes

Update policy doc to use new rule format

Browse Source 
The policy documentation was using the old rule format when the
new format is preferred.

Change-Id: Ie06210ca7d2cd5ecb0757dd8db3857be2b57242b
This commit is contained in:
Brant Knudson 2015-02-11 18:51:52 -06:00
parent 76d0886361
commit 56e3a0fb43
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
doc/source/configuration.rst
View File

@ -1006,7 +1006,7 @@ API call in question. For example:
.. code-block:: javascript
"identity:create_user": [["role:admin", "domain_id:%(user.domain_id)s"]]
"identity:create_user": "role:admin and domain_id:%(user.domain_id)s"
Indicates that to create a user you must have the admin role in your token and
in addition the domain_id in your token (which implies this must be a domain
@ -1032,7 +1032,7 @@ The following attributes are available
.. code-block:: javascript
"identity:delete_user": [["role:admin", "domain_id:%(target.user.domain_id)s"]]
"identity:delete_user": "role:admin and domain_id:%(target.user.domain_id)s"
would ensure that the user object that is being deleted is in the same
domain as the token provided.