openstack/keystonemiddleware
Code Issues Proposed changes

Fix service_token_role_required option

Browse Source 
The service_token_roles_required should be correct.

Change-Id: I009e3a495953d61fb0c29a8b629efa3322cb0ddd
This commit is contained in:
ZhongShengping 2019-02-14 17:09:21 +08:00
parent 1360bab808
commit caa899b93d
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
keystonemiddleware/auth_token/__init__.py
View File

@ -374,9 +374,9 @@ class BaseAuthProtocol(object):
check = self._service_token_roles.intersection(role_names) check = self._service_token_roles.intersection(role_names)
role_check_passed = bool(check) role_check_passed = bool(check)
# if service_token_role_required then the service token is only # if service_token_roles_required then the service token is
# valid if the roles check out. Otherwise at this point it is # only valid if the roles check out. Otherwise at this point it
# true because keystone has already validated it. # is true because keystone has already validated it.
if self._service_token_roles_required: if self._service_token_roles_required:
request.service_token_valid = role_check_passed request.service_token_valid = role_check_passed
else: else: