openstack
/
keystone
Code Issues Proposed changes
keystone/keystone
History
Markus Hentsch dd785ee692 Add domain scoping to list_domains 
Introduces domain-scoped filtering of the response list of the
list_domains endpoint when the user is authenticated in domain scope
instead of returning all domains. This aligns the implementation with
other endpoints like list_projects or list_groups and allows for a
domain-scoped reader role.
Changes the default policy rule for identity:list_domains to
incorporate this new behavior for the reader role.

Closes-Bug: 2041611
Change-Id: I8ee50efc3b4850060cce840fc904bae17f1503a9
 		2024-02-08 13:55:44 +01:00
..
api Add domain scoping to list_domains 2024-02-08 13:55:44 +01:00
application_credential db: Replace use of reverse cascades 2023-02-28 17:26:39 +00:00
assignment Improve application credential validation speed 2024-01-02 08:46:24 +00:00
auth Keystone to honor the "domain" attribute mapping rules. 2024-01-16 08:54:56 -03:00
catalog Clean up deprecated options for eventlet server 2023-12-07 10:40:11 +09:00
cmd Merge "Keystone to honor the "domain" attribute mapping rules." 2024-01-26 17:37:09 +00:00
common Add domain scoping to list_domains 2024-02-08 13:55:44 +01:00
conf Merge "Clean up deprecated options for eventlet server" 2024-01-26 17:37:17 +00:00
credential sql: Fix incorrect columns 2023-07-03 12:32:58 +01:00
endpoint_policy Remove six usage 2020-01-30 06:06:51 +00:00
federation Merge "Keystone to honor the "domain" attribute mapping rules." 2024-01-26 17:37:09 +00:00
identity Merge "Check user existence before setting last_active_at" 2024-01-26 19:25:20 +00:00
limit Remove six usage 2020-01-30 06:06:51 +00:00
locale Imported Translations from Zanata 2023-08-26 03:38:27 +00:00
models Improve application credential validation speed 2024-01-02 08:46:24 +00:00
oauth1 db: Replace use of Query.get() 2023-02-28 17:26:39 +00:00
oauth2 OAuth2.0 Client Credentials Grant Flow Support 2022-06-14 09:09:33 +00:00
policy db: Replace use of Query.get() 2023-02-28 17:26:39 +00:00
receipt Remove six usage 2020-01-30 06:06:51 +00:00
resource sql: Remove duplicate constraints 2023-04-06 11:23:03 +01:00
revoke Revoke list_events: Add trust sql filter 2023-07-12 15:17:55 +02:00
server Merge "Propagate redirect exceptions to the client" 2024-01-26 17:37:22 +00:00
tests Add domain scoping to list_domains 2024-02-08 13:55:44 +01:00
token Add a cache to check_revocation 2023-07-13 16:00:28 +02:00
trust db: Replace use of Query.get() 2023-02-28 17:26:39 +00:00
__init__.py Revert "Disable eventlet monkey-patching of DNS" 2013-05-10 10:24:48 -04:00
exception.py Propagate redirect exceptions to the client 2023-12-07 18:14:03 +01:00
i18n.py Fix translated response 2019-08-19 14:49:37 +08:00
notifications.py Hide AccountLocked exception from end users 2021-04-23 13:43:42 -05:00
version.py Add expiring user group memberships on mapped authentication 2020-04-07 19:30:57 -04:00