"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "doc/source/contributor/services.rst" between
keystone-15.0.0.tar.gz and keystone-15.0.1.tar.gz

About: OpenStack Keystone (Core Service: Identity) provides an authentication and authorization service for other OpenStack services. Provides a catalog of endpoints for all OpenStack services.
The "Stein" series (maintained release).

services.rst  (keystone-15.0.0):services.rst  (keystone-15.0.1)
skipping to change at line 500 skipping to change at line 500
Communication Communication
------------- -------------
Communicating early and often is never a bad thing, especially when a change is Communicating early and often is never a bad thing, especially when a change is
going to impact operators. At this point, it's crucial to emphasize the changes going to impact operators. At this point, it's crucial to emphasize the changes
you've made to policy enforcement in your service. Release notes are an you've made to policy enforcement in your service. Release notes are an
excellent way to signal changes to operators. You can find examples when excellent way to signal changes to operators. You can find examples when
keystone implemented support for default roles. Additionally, you might have keystone implemented support for default roles. Additionally, you might have
operators or users ask questions about the various scopes or what they mean. operators or users ask questions about the various scopes or what they mean.
Don't hesitate to refer them to keystone's `scope documentation Don't hesitate to refer them to keystone's :ref:`scope documentation
<https://docs.openstack.org/keystone/latest/admin/tokens-overview.html#authoriza <authorization_scopes>`.
tion-scopes>`_.
Auth Token middleware Auth Token middleware
===================== =====================
The ``auth_token`` middleware handles token validation for the different The ``auth_token`` middleware handles token validation for the different
services. Conceptually, what happens is that ``auth_token`` pulls the token out services. Conceptually, what happens is that ``auth_token`` pulls the token out
of the ``X-Auth-Token`` request header, validates the token using keystone, of the ``X-Auth-Token`` request header, validates the token using keystone,
produces information about the identity (the API user) and authorization produces information about the identity (the API user) and authorization
context (the project, roles, etc) of the token, and sets environment variables context (the project, roles, etc) of the token, and sets environment variables
with that data. The services typically take the environment variables, put them with that data. The services typically take the environment variables, put them
 End of changes. 1 change blocks. 
3 lines changed or deleted 2 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)