[Openstack] nova-list in non-default domain throws unauthorized
Shyam Biradar
shyambiradarsggsit at gmail.com
Wed Sep 7 10:48:23 UTC 2016
Hello,
I have multi-domain kilo setup. Used cloud_admin policy json.
nova-list with default domain is working fine. But with non-default domain
having exact permissions is not working.
I am using following rc file:
------------------------------------------------------------
export OS_USERNAME=project01_user
export OS_PASSWORD=password
export OS_AUTH_URL=http://IP:5000/v3
export OS_PROJECT_NAME=project01
export OS_PROJECT_DOMAIN_NAME=domain01
export OS_USER_DOMAIN_NAME=domain01
export OS_REGION_NAME=RegionOne
export PS1='[\u@\h \W(domain01_admin)]\$ '
export OS_IDENTITY_API_VERSION=3
export OS_VOLUME_API_VERSION=2
export OS_IMAGE_API_VERSION=2
---------------------------------------------------------
As per nova policy json, any user having any role on project should be able
to list instances.
project01_user is admin on project01, so I think it should be able to list
instances.
Thanks & Regards,
Shyam Biradar,
Email: shyambiradarsggsit at gmail.com,
Contact: +91 8600266938.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20160907/28614588/attachment.html>
More information about the Openstack
mailing list