8e9507bf9a
This change moves the .rst files into the main adming-guide-cloud folder now conversion is complete. changes to the project config and to the openstack manuals to stop sync of .xml files are also needed. Change-Id: I498e8d6ac3cb80da413e23b14a0959abd58e7d79 Implements: blueprint reorganise-user-guides
33 lines
1.2 KiB
ReStructuredText
33 lines
1.2 KiB
ReStructuredText
=========
|
|
User CRUD
|
|
=========
|
|
|
|
Identity provides a user CRUD (Create, Read, Update, and Delete) filter
|
|
that can be added to the ``public_api`` pipeline. The user CRUD filter
|
|
enables users to use a HTTP PATCH to change their own password. To
|
|
enable this extension you should define a :code:`user_crud_extension`
|
|
filter, insert it after the "option:`*_body` middleware and before the
|
|
``public_service`` application in the ``public_api`` WSGI pipeline in
|
|
:file:`keystone-paste.ini`. For example:
|
|
|
|
.. code-block:: ini
|
|
:linenos:
|
|
|
|
[filter:user_crud_extension]
|
|
paste.filter_factory = keystone.contrib.user_crud:CrudExtension.factory
|
|
|
|
[pipeline:public_api]
|
|
pipeline = sizelimit url_normalize request_id build_auth_context token_auth admin_token_auth json_body ec2_extension user_crud_extension public_service
|
|
|
|
Each user can then change their own password with a HTTP PATCH::
|
|
|
|
$ curl -X PATCH http://localhost:5000/v2.0/OS-KSCRUD/users/USERID -H "Content-type: application/json" \
|
|
-H "X_Auth_Token: AUTHTOKENID" -d '{"user": {"password": "ABCD", "original_password": "DCBA"}}'
|
|
|
|
In addition to changing their password, all current tokens for the user
|
|
are invalidated.
|
|
|
|
.. note::
|
|
|
|
Only use a KVS back end for tokens when testing.
|