Stack Overflow
Stack Overflow

Questions tagged [keystone]

Keystone is the identity service used by OpenStack for authentication.

Essentially keystone's role is to grant tokens to users be they people, services, or anything at all.

If you make an API query anywhere in OpenStack, keystone's API is how it is discovered if you are allowed to make that API query.

247 questions
3
votes
4 answers

Is it possible to ge the list of tenants a user is associated with in OpenStack using the keystoneclient?

Anyone know a way to get the list of tenants for a user? I know I can get the users for a tenant and I can get a list of all the tenants so technically I could loop through all the tenants and look for a specific user but that seems like a…
ldeluca
  • 934
  • 3
  • 12
  • 25
3
votes
1 answer

Integrating Swift and Keystone

I have swift-proxy and keystone installed in a multi-node environment. When I try to curl for a token, keystone returns the token successfully curl -d '{"auth":{"passwordCredentials":{"username": "swift", "password": "swift"}}}' -H "Content-type:…
Skynet
  • 657
  • 2
  • 9
  • 25
2
votes
1 answer

Next run dev compiled successfully, but localhost is not loading

When I run npm run dev. out of the blue, localhost just loads forever. The response is below in image 1: I thought it was some sort of change I made, but I exhausted myself looking for a change that could have caused it. I then duplicated my repo…
Cjmaret
  • 142
  • 9
2
votes
0 answers

How to configure, bootstrap Openstack keystone with ldap as identity backend without return authentication fail?

I am using ldap as keystone identity backend, but it does not work as I expected. I always get authentication fail http 401 response. I followed these docs to configure my keystone and ldap: I refer this doc to configure keystone:…
cosz3
  • 359
  • 4
  • 15
2
votes
1 answer

Fiware/IDM Creating Users, Roles

Im using fiware/idm image from docker and im trying to create new users, but without success. How can i generate Users? In the docker file from fiware/idm the sync database steps are: RUN sudo tools/with_venv.sh bin/keystone-manage db_sync && \ …
Naff16
  • 83
  • 1
  • 9
2
votes
1 answer

Unable to connect a dockerised keystone container with a dockerised mongo container

I am trying to get a dockerised keystoneJS to talk to a dockerised mongoDB instance and I am struggling to see where I am going wrong in terms of linking them together. I have gone through the docker docs and similar examples online that are trying…
D Chambers
  • 31
  • 3
2
votes
0 answers

How can I enable Users to only edit their own data in Keystone.js?

In Keystone.js, all admin users can view and change any data about other users, but I would like to have some hierarchy, so there is a root user group that can change anything about any user (except password) and a simple admin group that can see…
Victor Fermino
  • 21
  • 3
2
votes
2 answers

HTTP error 401 when configuring keystone

I am attempting to install keystone on my controller node. I am using the install guide located at http://docs.openstack.org/kilo/install-guide/install/yum/content/keystone-services.html. I am having some issues when I get to the following step. …
chriss
  • 1,528
  • 4
  • 13
  • 18
2
votes
0 answers

OpenStack4J: How do I list roles for identity(keystone) v3?

I am using OpenStack4J as a client to OpenStack Identity (keystone) v2. I am able to successfully authenticate and to list roles using OpenStack4J against keystone v2. I've now started to port my software to use identity(keystone) v3. OpenStack4J…
mashton
  • 21
  • 2
2
votes
1 answer

OpenStack Horizon RBAC setting custom permissions

I'm working on customizing Horizon. My goal is to, not only limit access to certain aspects of the dashboard, but also remove these components from the dashboard depending on the user role. So I'm not sure if this is even the right direction to be…
hbdavehb
  • 220
  • 1
  • 6
2
votes
1 answer

Create a custom role in Openstack to provide read-only access for a single tenant?

I'm running devstack (master from github as of 11/21/2014) with the Horizon v2 api (default) and I want to create a read-only user account/role for viewing a single tenant's resources. I'm fairly new to things, and /etc/nova/policy.json and…
Geese
  • 51
  • 4
2
votes
1 answer

Openstack.Net SDK cannot access services

We've setup an OpenStack system on our own hardware installing all components, with everything seemingly fine as we've created networks and VMs through the web interface. I'm trying to use openstack.net SDK to do things programatically. I seem to be…
Hoots
  • 1,876
  • 14
  • 23
2
votes
1 answer

Pre-populating documents using Mongoose + Express

I am new to Node+Mongoose, and am currently in the process of creating an API using KeystoneJS. I've managed to populate all posts with the author's email and name. My question is, is there a way to populate the post with author everytime, possibly…
Four
  • 406
  • 4
  • 13
2
votes
2 answers

Unauthorized error when using OpenStack API, can't get authentication token from keystone

I want to use the RESTful API, e.g. https://nova.rc.nectar.org.au:8774/v1.1/1f283209946f428998e8d3930bb038d1 But can not get the authentication token. I tried the following command to get it (I don't have admin access): curl -d…
Mzq
  • 1,796
  • 4
  • 30
  • 65
2
votes
1 answer

Keystone SSL config with intermediate CA cert

I'm trying to configure keystone with ssl certs from an intermediate CA. Is there any way of getting keystone to "serve" the intermediate CA's cacert to clients? I've tried setting it in keystone.conf with ca_certs option under both [ssl] and…
mrmoje
  • 3,714
  • 3
  • 20
  • 18
1
2
3
16 17