summaryrefslogtreecommitdiff
path: root/openstackclient/identity/v3
Commit message (Collapse)AuthorAgeFilesLines
* Merge "keystone: fix catalog output when region is unset"Jenkins2016-05-251-1/+1
|\
| * keystone: fix catalog output when region is unsetJulien Danjou2016-05-251-1/+1
| | | | | | | | | | | | | | | | | | | | If no region is set in Keystone, null is deserialized as None and the region has None has value, which triggers a type error when building the output string. This patch fixes that. Change-Id: I7637dc2595655cf452f38308f99fe66ac782e16d
* | Merge "Search by user defined ID for service providers"Jenkins2016-05-251-1/+2
|\ \
| * | Search by user defined ID for service providersSteve Martinelli2016-05-241-1/+2
| |/ | | | | | | | | | | | | | | | | | | | | | | IDs for service providers can be user defined (like, Bob). This causes issues with the usual get by ID method. Keystone server side has implemented changes to search by ID when listing, which should resolve the issue with minimal changes to the client side. Change-Id: Ic705806e4bc7bb24f946a1fce803a0a0a4d788c1 Closes-Bug: 1555830
* | Search by user defined ID for identity providersSteve Martinelli2016-05-231-1/+2
|/ | | | | | | | | | | | IDs for service providers can be user defined (like, Bob). This causes issues with the usual get by ID method. Keystone server side has implemented changes to search by ID when listing, which should resolve the issue with minimal changes to the client side. Change-Id: Ic58df22b3445d3293a8e1c76c5da79badebf6528 Closes-Bug: 1479837
* remove #noqa from i18n importsSteve Martinelli2016-05-138-8/+8
| | | | | | hacking checks no longer fail on `import _` Change-Id: Idd60f0a0e71e5081691eacb39e5091ab08fcce6d
* Added "name" parameter to the help message.sharat.sharma2016-05-041-1/+1
| | | | | | | | | In OS_IDENTITY_API_VERSION=3, the "openstack help service delete" allows the user to remove a service based on the name of the service. So, this patch includes name as positional argument. Change-Id: Iae7cb0a82af3cdd4d88e0ed2eb651abf9af30fd9 Closes-Bug: #1566909
* Doc: Unify repeatable option commentsTang Chen2016-04-123-4/+4
| | | | | | | | | | | | There are lots of "this option can be repeated" comments in the doc, which are not consistent to other similar docs. This patch changes them to the following format: "repeat option to do something" Change-Id: I54e01053091c428bf87bb36bb95f73a0b80ab6e7
* Improve error for token issue command without authtimothy-symanczyk2016-03-181-0/+4
| | | | | | | | | Currently when you perform the 'token issue' command with the admin_token, the error is a nonsense python error. This commit changes it to be user-friendly. Change-Id: I5cc92c342e3f83e099354cd04301c7b8d8d2dabc Closes-Bug: #1547721
* take_action() method from command.Command shouldn't returnMohan Muppidi2016-02-2916-43/+18
| | | | | | | | | | | | command.Command and command.Showone are base classes implemented in cliff framework. Showone extends Command to allow take_action() to return data to be formatted using a user-selectable formatter. Most of the classes which are extended from Command in openstackclient/identity/v3/ in some cases return data or return nothing where it is not necessary, this commit fixes most of them. Change-Id: I84c72ea4d6680f8bdbef5449316dd9a8af8c8286 Closes-Bug: 1550892
* Fixed a bunch of spacingBrandon Palm2016-02-232-1/+2
| | | | | | | Nothing too complicated here. I fixed a bunch of spacing issues that I saw in OSC. Change-Id: I935ab48e7c5bac5f88ecdb3a05f73fb44fc9f41d
* Support unscoped token requestguang-yee2016-02-191-0/+3
| | | | | | | | Make scope check optional for the "token issue" command as unscoped token is a valid Keystone V2/V3 API. Change-Id: Ie1cded4dbfdafd3a78c0ebdf89e3f66762509930 Closes-Bug: #1543214
* Merge "Return names in list role assignments"Jenkins2016-02-171-6/+34
|\
| * Return names in list role assignmentsTom Cocozzello2016-01-271-6/+34
| | | | | | | | | | | | | | | | | | | | | | | | Utilize the new include names functionality added to list role assignments (GET /role_assignments?include_names=True). Which will return the names of the entities instead of their IDs. Change-Id: I6dc03baf61ef9354a8a259a9f17ff47ce1665ce7 Depends-On: I4aa77c08660a0cbd021502155938a46121ca76ef Closes-Bug: #1479569 Implements: blueprint list-assignment-with-names
* | Add "token revoke" for identity v3lin-hua-cheng2016-02-091-0/+19
| | | | | | | | | | Change-Id: Ie631600d02942fe6ce035f31af46abe44e543631 Closes-bug: #1543226
* | log take_action parameters in a single placeAkihiro Motoki2016-02-0221-446/+81
|/ | | | | | | | | | | | Previously each command logs take_action parameters explicitly by using @utils.log_method decorator or log.debug(). Some commands have no logging. This commit calls a logger in the base class and drops all logging definition from individual commands. Closes-Bug: #1532294 Change-Id: I43cd0290a4353c68c075bade9571c940733da1be
* Support non-interactive user password updateGuang Yee2016-01-111-2/+29
| | | | | | | | | | | | | | Currently user password update require interactive prompting of user's original password. This is problematic because we can't support non-interactive applications and therefore hinders automation. This patch make it possible by optionally accepting an '--original-password' argument. If specified, we would use it instead of prompting. DocImpact Change-Id: I2d994e8c2be949f7ae616ac1d1594fb94e1a27cd Closes-Bug: 1531360
* Enabling domain lookup for project set v3 commandJude Job2015-12-311-6/+2
| | | | | | | | | | | | | | Currently the domain option for `project set` attempts to set a new domain that owns the project. This is actually an action that is denied by keystone server. Instead, the domain option should be used as a lookup, to find projects that exist in the non-default domain. Co-Authored-By: Steve Martinelli <stevemar@ca.ibm.com> Closes-Bug: #1524456 Change-Id: I30a3812184fe262667e09baa106d2275c2cbb981
* Switch to ksa SessionDean Troyer2015-12-025-10/+10
| | | | | | | | * Change session imports to keystoneauth1 * Change keystoneclient.exception imports to keystoneauth1 * Change exceptions raised from internal API from keystoneclient to openstack.common Change-Id: I046d89f561d6fe04baae53726f9749d2e7fe2056
* Merge "better format remote IDs for identity providers"Jenkins2015-11-151-3/+7
|\
| * better format remote IDs for identity providersSteve Martinelli2015-11-121-3/+7
| | | | | | | | | | | | | | | | | | remote-ids are a list, and we should format these values as such, rather than python representations of lists/arrays. Closes-Bug: 1478995 Change-Id: Ia6ced0fab2435b8cb486822c676c0dee32613abe
* | Add capability to update description of an IdPlin-hua-cheng2015-11-121-2/+11
|/ | | | | Change-Id: I854067642bbfde6fdf84b22b9cc1de8afc7767c0 Closes-Bug: #1515815
* Merge "Mark arguments for 'credential' commands as required"Jenkins2015-11-041-16/+15
|\
| * Mark arguments for 'credential' commands as requiredSean Perry2015-09-301-16/+15
| | | | | | | | | | | | | | | | | | | | | | According to the [1], 'user_id', 'type', and 'blob' are all required arguments for 'credential set' but the code treats them as optional. Set the 'required' flag and remove logic supporting missing arguments. [1]: https://github.com/openstack/keystone-specs/blob/master/api/v3/identity-api-v3.rst#credentials-v3credentials "spec" Change-Id: I597c9616ad744385fc6dd92379feb03daec54458 Closes-Bug: #1418837
* | remove url from v3 regionsSteve Martinelli2015-10-211-19/+3
| | | | | | | | | | | | | | | | | | | | | | the parameter "url" was removed from Keystone, it was only added for one release as part of an experimental support for adding service providers. BackwardsIncompatibleImpact Closes-Bug: 1506841 Change-Id: I7a62fbf1d9bfa8e6dd8d619e98c32b9860348d2e
* | Evaluate --inherited in role listRudolf Vriend2015-10-061-0/+5
|/ | | | | | | | the --inherited option was not being passed into keystoneclient Closes-Bug: #1502822 Change-Id: I48170dc67b23cc9b0665b1e0f38118eea952f131
* Merge "Remove backticks from help in role commands"Jenkins2015-09-191-1/+1
|\
| * Remove backticks from help in role commandsHidekazu Nakamura2015-09-191-1/+1
| | | | | | | | | | | | | | | | the docs and code had inconsistencies with how it references other arguments, lets just remove the backticks from around them. Change-Id: I43d17b07364e45387c6b9d86c2aca26eeea8ed93
* | Merge "Support listing users by group name"Jenkins2015-09-191-6/+4
|\ \ | |/ |/|
| * Support listing users by group nameSteve Martinelli2015-09-071-6/+4
| | | | | | | | | | | | | | | | | | | | | | Listing users within a group is not presently domain scoped. We do not use the domain info at all when the group option is present. A new --group-domain option is not needed since we cannot list users by --project and --group, they are mutually exclusive (as per the identity API). Closes-Bug: 1492916 Change-Id: I50f995ee4a03c2bdb21f2b5722546ab8fe786eb6
* | Use a common decorator to log 'take_action' activationJoshua Harlow2015-09-0118-81/+81
|/ | | | | | | | | Instead of duplicating the same log statement throughout the code, the same logic can be provided by a shared decorator that abstracts away the logging capability and unifies it behind a common function instead. Change-Id: Icc63bced7347c8bbf0299a4c5821425a10892a79
* Use correct domain to find project1.6.0Jamie Lennox2015-08-111-1/+1
| | | | | | | | | When adding a role to a group and project OSC is mistakenly using the group_domain to find the project which will fail if the group_domain != project_domain. Change-Id: I4c1bec9b3b183c755be121b91f40e026d707192b Closes-Bug: #1483520
* Merge "Inherited info/option when listing role assignment"Jenkins2015-08-081-4/+10
|\
| * Inherited info/option when listing role assignmentSamuel de Medeiros Queiroz2015-08-061-4/+10
| | | | | | | | | | | | | | | | | | | | Adds inherited information when listing role assignments. In addition, it makes possible to list only inherited ones by adding --inherited option. Change-Id: Idf889603d584716da95e2c7b4880142fbd8291c4 Closes-Bug: 1370546
* | Fixes inherited role assignments CRUD callsSamuel de Medeiros Queiroz2015-08-061-1/+1
|/ | | | | | | | | | The paremeter to Keystone Client was passed as 'inherited', when it should be 'os_inherit_extension_inherited'. Closes-Bug: #1482254 Change-Id: I1cb46add532223ef0b9620763b1047cc80e19ec0
* Add domain scoping in 'role assignment list'lin-hua-cheng2015-07-311-0/+6
| | | | | | | | Add ability to set which domain the user, group or project belong to. Change-Id: Idf6c7f23ab96261a73682226fb10ce5f0133924e Closes-Bug: #1472909
* Fix --os-auth-plugin in auth_with_unscoped_samlHugh Saunders2015-07-221-1/+1
| | | | | | | | The error message refers to --os-auth-plugin which is not a valid option. This patch changes that to --os-auth-type. Change-Id: I02ec0b7855131180bb8c674051930ebb51cb7303 Closes-Bug: #1477083
* Merge "Make trustee/trustor/project searchable by ID"Jenkins2015-07-211-23/+8
|\
| * Make trustee/trustor/project searchable by IDSteve Martinelli2015-07-201-23/+8
| | | | | | | | | | | | | | | | | | | | In the previous implementation, we were always including the domain argument, which caused a lookup by name for trustee/trustor and project. By excluding it when not necessary, we do a search by ID in find_resources. Change-Id: Id756aeab522b5dccb2dc6b31d137a28514b0fdf6 Closes-Bug: 1473298
* | Merge "Removes trailing blank in trust show"Jenkins2015-07-191-2/+2
|\ \
| * | Removes trailing blank in trust showGilles Dubreuil2015-07-191-2/+2
| |/ | | | | | | | | | | | | Previously a blank character at the end of the roles value would remain Change-Id: I0961a5f9fb4b270a6055ee69898eadee315e416a Closes-Bug: 1474707
* | add --project-domain option for user v3Guojian Shao2015-07-161-6/+8
|/ | | | | | | | | user v3 create/set only support --project option, we need --project-domain to prevent collisions between project names exist. Change-Id: I2d62e5b9bb6df4c5c5a9542514faf2e4365bb18b Closes-Bug: #1475357
* Merge "Enables retrieval of project's parents and subtree"Jenkins2015-06-251-7/+30
|\
| * Enables retrieval of project's parents and subtreeRodrigo Duarte Sousa2015-06-091-7/+30
| | | | | | | | | | | | | | | | | | | | | | | | Adds the possibility to retrieve a project and list its parents and subtree in the hierarchy. Co-Authored-By: Rodrigo Duarte <rodrigods@lsd.ufcg.edu.br> Co-Authored-By: Samuel de Medeiros Queiroz <samuel@lsd.ufcg.edu.br> Implements: bp hierarchical-multitenancy Change-Id: I874f6faffc8a2db9d99f12cbe0a69c0a30c0d9df
* | Add support to inherited project role grant callsSamuel de Medeiros Queiroz2015-06-221-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Once inherited project role grant calls are implemented on python-keystoneclient, python-openstackclient also should support such calls. This patch add such support as well as its related tests. Co-Authored-By: Raildo Mascena <raildo@lsd.ufcg.edu.br> Change-Id: Id72670be8640e5c6e2490a6ef849e9ec3493b1a9 Implements: blueprint hierarchical-multitenancy
* | Merge "Refactor option handling for user|group|project domain scoping"Jenkins2015-06-174-122/+18
|\ \
| * | Refactor option handling for user|group|project domain scopingSteve Martinelli2015-06-174-122/+18
| | | | | | | | | | | | | | | | | | | | | put the common options in identity.common, this way the help is consistent Change-Id: I5b09cfb56fa0f8d16feb95150f216fccbe9f2b22
* | | reference corect ec2 helper functionSteve Martinelli2015-06-161-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | ec2creds.py was referencing a function on self, but wasn't there. Correctly reference the right function. Change-Id: I62f09c497be9dbb394341914388d60634e8b80c2 Closes-Bug: 1465561
* | | Add oidc plugin for listing federation projectsSteve Martinelli2015-06-111-1/+1
|/ / | | | | | | | | | | | | the oidc plugin should be included in the list of valid federation protocols that can leverage `federation project list` Change-Id: I3f5c5ab262c7097273716a81618a2dcbb159dd6f
* | Merge "Enable specifying domain for group and role commands"Jenkins2015-06-092-242/+195
|\ \ | |/ |/|
View Lorry Controller Status