From d5c53ab3116a2ae4366ba50edf47c7aad30676fd Mon Sep 17 00:00:00 2001
From: Steven Deaton <sdeaton2@gmail.com>
Date: Thu, 27 Feb 2014 08:55:38 +0000
Subject: [PATCH] Added more sample output for verification assistance.

Added output from user-role-list which helps with verifying that
the correct role is assigned to the correct user for the related
tenant.

Change-Id: I3d607ce389e72b9137d3d84a11c90fe8df2cc9b8
---
 doc/install-guide/section_keystone-verify.xml | 18 +++++++++++++++---
 1 file changed, 15 insertions(+), 3 deletions(-)

diff --git a/doc/install-guide/section_keystone-verify.xml b/doc/install-guide/section_keystone-verify.xml
index 099cf666a4..2c19fb8764 100644
--- a/doc/install-guide/section_keystone-verify.xml
+++ b/doc/install-guide/section_keystone-verify.xml
@@ -73,9 +73,21 @@ export OS_AUTH_URL=http://controller:35357/v2.0</programlisting>
 +----------------------------------+---------+--------------------+--------+
 | a4c2d43f80a549a19864c89d759bb3fe | True    | admin@example.com  | admin  |
 +----------------------------------+---------+--------------------+--------+</computeroutput></screen>
-      <para>This verifies that your user account has the
-          <literal>admin</literal> role, which matches the role used
-        in the Identity Service <filename>policy.json</filename>
+      <screen><prompt>#</prompt> <userinput>keystone user-role-list</userinput>
+<computeroutput>+----------------------------------+----------+----------------------------------+----------------------------------+
+|                id                |   name   |             user_id              |            tenant_id             |
++----------------------------------+----------+----------------------------------+----------------------------------+
+| 9fe2ff9ee4384b1894a90878d3e92bab | _member_ | a4c2d43f80a549a19864c89d759bb3fe | e519b772cb43474582fa303da62559e5 |
+| 5d3b60b66f1f438b80eaae41a77b5951 |  admin   | a4c2d43f80a549a19864c89d759bb3fe | e519b772cb43474582fa303da62559e5 |
++----------------------------------+----------+----------------------------------+----------------------------------+</computeroutput></screen>
+      <para>Seeing that the <literal>id</literal> in the output
+        from the <command>keystone user-list</command>
+        command matches the <literal>user_id</literal> in the
+        <command>keystone user-role-list</command> command,
+        and that the admin role is listed for that user, for the
+        related tenant, this verifies that your user account has the
+        <literal>admin</literal> role, which matches the role
+        used in the Identity Service <filename>policy.json</filename>
         file.</para>
       <note>
         <para>As long as you define your credentials and the Identity