8e9507bf9a
This change moves the .rst files into the main adming-guide-cloud folder now conversion is complete. changes to the project config and to the openstack manuals to stop sync of .xml files are also needed. Change-Id: I498e8d6ac3cb80da413e23b14a0959abd58e7d79 Implements: blueprint reorganise-user-guides
1.2 KiB
1.2 KiB
User CRUD
Identity provides a user CRUD (Create, Read, Update, and Delete)
filter that can be added to the public_api pipeline. The
user CRUD filter enables users to use a HTTP PATCH to change their own
password. To enable this extension you should define a
user_crud_extension filter, insert it after the
"option:*_body middleware and before the
public_service application in the public_api
WSGI pipeline in keystone-paste.ini. For example:
[filter:user_crud_extension]
paste.filter_factory = keystone.contrib.user_crud:CrudExtension.factory
[pipeline:public_api]
pipeline = sizelimit url_normalize request_id build_auth_context token_auth admin_token_auth json_body ec2_extension user_crud_extension public_serviceEach user can then change their own password with a HTTP PATCH:
$ curl -X PATCH http://localhost:5000/v2.0/OS-KSCRUD/users/USERID -H "Content-type: application/json" \
-H "X_Auth_Token: AUTHTOKENID" -d '{"user": {"password": "ABCD", "original_password": "DCBA"}}'In addition to changing their password, all current tokens for the user are invalidated.
Note
Only use a KVS back end for tokens when testing.