[Openstack-operators] How to allow users to list services by modifying the policy.json file of Keystone

Fischer, Matt matthew.fischer at twcable.com
Tue Jan 27 17:08:23 UTC 2015

On 1/26/15, 8:46 AM, "Christian Berendt" <berendt at b1-systems.de> wrote:

>On 01/26/2015 04:02 PM, Fischer, Matt wrote:
>> Is there any reason that the user can¹t just run keystone catalog which
>> does not require admin permissions?
>Matt, this is just an example. We tried it with different list methods
>and it is also not working.
>We read your blog post about the topic
>(http://www.mattfischer.com/blog/?p=524) and it is working for us for
>services like Neutron or Nova. But not for Keystone.


I discussed this with the keystone folks this morning and it looks like
there are some internal checks for admin that are causing this. One of the
keystone team will be following-up with more details.

This E-mail and any of its attachments may contain Time Warner Cable proprietary information, which is privileged, confidential, or subject to copyright belonging to Time Warner Cable. This E-mail is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this E-mail, you are hereby notified that any dissemination, distribution, copying, or action taken in relation to the contents of and attachments to this E-mail is strictly prohibited and may be unlawful. If you have received this E-mail in error, please notify the sender immediately and permanently delete the original and any copy of this E-mail and any printout.

More information about the OpenStack-operators mailing list