7c129f1c70
The policy.v3cloudsample.json policy file attempted to solve admin-ness issues with elaborate policy checks. These checks are no longer needed with advent of system scope and incorporating system scope into keystone APIs. This commit removes the credential policies from the policy.v3cloudsample.conf policy file since the new defaults introduce more flexibility by consuming scope, rendering the policies in policy.v3cloudsample.conf obsolete. More specific test coverage has also been added for each new case in keystone.tests.unit.protection.v3.test_credentials. Change-Id: I6c74f40640da23375574f4a26ee60779ef08d120 Related-Bug: 1788415 |
||
|---|---|---|
| .. | ||
| README.txt | ||
| default_catalog.templates | ||
| logging.conf.sample | ||
| policy.v3cloudsample.json | ||
| sso_callback_template.html | ||
README.txt
To generate the sample keystone.conf and keystone.policy.yaml files, run the
following commands from the top level of the keystone directory:
tox -egenconfig
tox -egenpolicy
For a pre-generated example of the latest files, see:
https://docs.openstack.org/keystone/latest/configuration/samples/index.html