openstack/puppet-cloudkitty
Code Issues Proposed changes
Files
master
puppet-cloudkitty/releasenotes/notes/system_scope-keystone-be4e70a45c419d25.yaml
Takashi Kajinami 6c3336b5d9 Accept system scope credentials for Keystone API request 
This change is the first step to support secure RBAC and allows usage
of system scope credentials for Keystone API request.

This change covers the following two items.
 - assignment of system scope roles to system user
 - credential parameters for authtoken middleware

Depends-on: https://review.opendev.org/804325
Change-Id: Ia12867af22002b6a6d1e40e9ded60c92d493023b
2022-01-24 15:01:26 +09:00

14 lines
395 B
YAML
Raw Permalink Blame History

---
features:
- |
The ``system_scope`` parameter has been added to
the ``cloudkitty::keystone::authtoken`` class.
- |
The ``cloudkitty::keystone::auth`` class now supports customizing roles
assigned to the cloudkitty service user.
- |
The ``cloudkitty::keystone::auth`` class now supports defining assignmet of
system-scoped roles to the cloudkitty service user.
View Git Blame Copy Permalink