Open Stack

Hi All,

The reason I ask this question in openstack-dev is there is a lot of
confusion going around other projects moving to keystone v3. Would it be a
problem if I use keystone v3 api for authenticating and point other
services to use keystone v2 with keystone v3 token? The main issue here is
keystone v2 does not support RBAC policies and other services don't
understand keystone v3.

Cheers,
Ajaya


On Wed, May 28, 2014 at 6:28 PM, Ajaya Agrawal <ajku.agr at gmail.com> wrote:

> Hi All,
>
> We want to introduce a role of project admin in our cloud who can add
> users only in the project in which he is an admin. AFAIK RBAC policies are
> not supported by keystone v2 api. So I suppose we will need to use keystone
> v3 to support the concept of project admin. But I hear things like all the
> projects don't talk keystone v3 as of now.
>
> What is the recommended way of doing it?
>
> Cheers,
> Ajaya
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20140529/5f59fadf/attachment.html>