[Keystone]Question about access rules for identity API
Hi, Are the access rules not applied for identity API? I created an application credential with a access rule that allows only project list API. But the application credential allows all identity APIs. Is this correct? Are there any documents that explains about this? By the way, the application credential denied all other service's APIs. I think this behavior is correct. I use OpenStack Ubuntu. Best regards, -- _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/ Rikimaru Honjo E-mail:honjo.rikimaru@ntt-tx.co.jp
Sorry, On 2020/12/08 18:36, Rikimaru Honjo wrote:
Hi,
Are the access rules not applied for identity API?
I created an application credential with a access rule that allows only project list API. But the application credential allows all identity APIs.
Is this correct? Are there any documents that explains about this?
By the way, the application credential denied all other service's APIs. I think this behavior is correct.
I use OpenStack Ubuntu.
The last sentence was typo. "I use OpenStack Ussuri."
Best regards,
-- _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/ Rikimaru Honjo E-mail:honjo.rikimaru@ntt-tx.co.jp
participants (1)
-
Rikimaru Honjo