f35dc66ff3
After spending huge effort to understand the exact requirements to enforce SRBAC, we learned it's very difficult to find the required scope in each credential. This requires understanding implementation of client-side as well as server-side, and requirement might be different according to the deployment architecture or features used. Instead of implementing support based on the actual implementation, this introduces support for system scope credentials to all places where keystone user credential is defined, and make all credential configurations consistent. Change-Id: I5cad33c4caf1e3b3408dba5328c8b2f67a85b555
8 lines
192 B
YAML
8 lines
192 B
YAML
---
|
|
features:
|
|
- |
|
|
The new ``system_scope`` parameter has been added to the following classes.
|
|
|
|
- ``trove::api::service_credentials``
|
|
- ``trove::guestagent::service_credentials``
|