openstack/puppet-aodh
Code Issues Proposed changes
puppet-aodh/releasenotes/notes/system_scope-keystone-af2d2f0ea5ed7043.yaml
Takashi Kajinami e13c2c9713 Accept system scope credentials for Keystone API request 
This change is the first step to support secure RBAC and allows usage
of system scope credentials for Keystone API request.

This change covers the following two items.
 - assignment of system scope roles to system user
 - credential parameters for authtoken middleware

Depends-on: https://review.opendev.org/804325
Change-Id: I672a988e77e58df0addb1ed4a47d609cbcef1331
2021-11-25 22:50:55 +09:00

14 lines
365 B
YAML
Raw Permalink Blame History

---
features:
- |
The ``system_scope`` parameter has been added to
the ``aodh::keystone::authtoken`` class.
- |
The ``aodh::keystone::auth`` class now supports customizing roles assigned
to the aodh service user.
- |
The ``aodh::keystone::auth`` class now supports defining assignmet of
system-scoped roles to the aodh service user.
View Git Blame Copy Permalink