openstack/keystone
Code Issues Proposed changes
af1c1a822a
keystone/releasenotes/notes/bp-whitelist-extension-for-app-creds-90e5bcd7b2b78b02.yaml
Colleen Murphy 131f7ddd4e Update API version for access rules 
This change updates the minor API version for the new access rules
feature for application credentials, and also adds documentation for
the new feature to the API reference as well as a release note.

bp whitelist-extension-for-app-creds

Change-Id: I8a03223df63877a4f86fbe7e9fa382fdd96c5934
2019-09-14 03:14:45 -07:00

19 lines
1.1 KiB
YAML
Raw Blame History

---
prelude: >
[`blueprint whitelist-extension-for-app-creds <https://blueprints.launchpad.net/keystone/+spec/whitelist-extension-for-app-creds>`_]
This release adds support for delegating fine-grained privileges to
application credentials via access rules. Access rules act as a whitelist
of APIs that an application credential is allowed to use. Regular RBAC is
still enforced by oslo.policy. See the `API reference
<https://developer.openstack.org/api-ref/identity/v3/#application-credentials>`_
for details.
features:
- |
[`blueprint whitelist-extension-for-app-creds <https://blueprints.launchpad.net/keystone/+spec/whitelist-extension-for-app-creds>`_]
This release adds support for delegating fine-grained privileges to
application credentials via access rules. Access rules act as a whitelist
of APIs that an application credential is allowed to use. Regular RBAC is
still enforced by oslo.policy. See the `API reference
<https://developer.openstack.org/api-ref/identity/v3/#application-credentials>`_
for details.
View Git Blame Copy Permalink