[Openstack] keystone client issues
James
jameszee13 at gmail.com
Mon Oct 14 20:43:16 UTC 2013
All,
Hoping someone can point me in the right direction with two questions I have.
(a) Getting Roles from Tenant
I'm trying to get list of *all users* that are part of a project, as follows:
% keystone tenant-list | grep -i test-lab
| 19371ce3a80b47e6bc31d7576c912de3 | train-lab-04
| True |
% keystone user-role-list --tenant-id 19371ce3a80b47e6bc31d7576c912ce3
<-- empty response
% keystone user-role-list --tenant-id 19371ce3a80b47e6bc31d7576c912de3
--user-id 08fda199e7e34348ab2d216d1ac18f9a
+----------------------------------+--------+----------------------------------+----------------------------------+
| id | name | user_id
| tenant_id |
+----------------------------------+--------+----------------------------------+----------------------------------+
| bff399d92fa74d2e81ffdebb9cd4cc11 | member |
08fda199e7e34348ab2d216d1ac18f9a | 19371ce3a80b47e6bc31d7576c912ce3 |
+----------------------------------+--------+----------------------------------+----------------------------------+
Is this a bug, or is there a way to get a list of all users that are
members of a tenant? Seems like the user-role-list command should
execute without a user-id being passed in.
(b) Using Non-UUID Values
I've seen some folks use usernames instead of UUIDs like this:
keystone user-role-list --tenant <blah> --user <blah2>
When I attempt do to this, I get the following error:
An unexpected error prevented the server from fulfilling your request.
global name 'user_ref' is not defined (HTTP 500)
Is there something that prevents me from using usernames and plain
tenant names instead of UUIDs, or is this a bug with the client?
Thanks!
More information about the Openstack
mailing list