Public bug reported:
For federation, we no longer able to map a remote user to a local user
because the JSON schema does not allow the "type" attributes in the user
object. This is a legit attribute and must be set to "local" in order to
be able to map to a local user.
To reproduce the problem:
1. install devstack or do a fresh clone of Keystone
2. save the following to test.json file
[
{
"local": [
{
"user": {
"name": "{0}",
"domain": {
"name": "{1}"
},
"type": "local"
}
}
],
"remote": [
{
"type": "SOMETHING"
},
{
"type": "STUFF"
}
]
}
]
3. $openstack --os-identity-api-version 3 --os-auth-url
http://localhost:35357/v3 --os-username admin --os-user-domain-id default
--os-project-name admin --os-project-domain-id default --os-password secrete
mapping create --rules test.json test
Additional properties are not allowed (u'type' was unexpected)
(HTTP 400) (Request-ID: req-7da918c4-8519-412c-bbda-fb4b29a02505)
** Affects: keystone
Importance: Critical
Status: New
** Changed in: keystone
Importance: Undecided => Critical
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1555403
Title:
mapping no longer allows 'type' attribute in 'user' object
Status in OpenStack Identity (keystone):
New
Bug description:
For federation, we no longer able to map a remote user to a local user
because the JSON schema does not allow the "type" attributes in the
user object. This is a legit attribute and must be set to "local" in
order to be able to map to a local user.
To reproduce the problem:
1. install devstack or do a fresh clone of Keystone
2. save the following to test.json file
[
{
"local": [
{
"user": {
"name": "{0}",
"domain": {
"name": "{1}"
},
"type": "local"
}
}
],
"remote": [
{
"type": "SOMETHING"
},
{
"type": "STUFF"
}
]
}
]
3. $openstack --os-identity-api-version 3 --os-auth-url
http://localhost:35357/v3 --os-username admin --os-user-domain-id default
--os-project-name admin --os-project-domain-id default --os-password secrete
mapping create --rules test.json test
Additional properties are not allowed (u'type' was unexpected)
(HTTP 400) (Request-ID: req-7da918c4-8519-412c-bbda-fb4b29a02505)
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1555403/+subscriptions
--
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to : yahoo-eng-team@lists.launchpad.net
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help : https://help.launchpad.net/ListHelp
