Main entry point into the Identity service.
Bases: object
Interface description for an Identity driver.
Add a role to a user within given tenant.
Raises : | keystone.exception.UserNotFound, keystone.exception.ProjectNotFound, keystone.exception.RoleNotFound |
---|
Adds a user to a group.
Raises : | keystone.exception.UserNotFound, keystone.exception.GroupNotFound |
---|
Add user to a tenant by creating a default role relationship.
Raises : | keystone.exception.ProjectNotFound, keystone.exception.UserNotFound |
---|
Authenticate a given user, tenant and password.
Returns: | (user_ref, tenant_ref, metadata_ref) |
---|---|
Raises : | AssertionError |
Checks if a user is a member of a group.
Raises : | keystone.exception.UserNotFound, keystone.exception.GroupNotFound |
---|
Creates a new credential.
Raises : | keystone.exception.Conflict |
---|
Creates a new domain.
Raises : | keystone.exception.Conflict |
---|
Creates a new group.
Raises : | keystone.exception.Conflict |
---|
Creates the metadata for the specified user/group on project/domain.
Returns: | metadata created |
---|
Creates a new project.
Raises : | keystone.exception.Conflict |
---|
Creates a new role.
Raises : | keystone.exception.Conflict |
---|
Creates a new user.
Raises : | keystone.exception.Conflict |
---|
Deletes an existing credential.
Raises : | keystone.exception.CredentialNotFound |
---|
Deletes an existing domain.
Raises : | keystone.exception.DomainNotFound |
---|
Deletes an existing group.
Raises : | keystone.exception.GroupNotFound |
---|
Deletes an existing project.
Raises : | keystone.exception.ProjectNotFound |
---|
Deletes an existing role.
Raises : | keystone.exception.RoleNotFound |
---|
Deletes an existing user.
Raises : | keystone.exception.UserNotFound |
---|
Get a credential by ID.
Returns: | credential_ref |
---|---|
Raises : | keystone.exception.CredentialNotFound |
Get a domain by ID.
Returns: | domain_ref |
---|---|
Raises : | keystone.exception.DomainNotFound |
Get a domain by name.
Returns: | domain_ref |
---|---|
Raises : | keystone.exception.DomainNotFound |
Get a group by ID.
Returns: | group_ref |
---|---|
Raises : | keystone.exception.GroupNotFound |
Gets the metadata for the specified user/group on project/domain.
Raises : | keystone.exception.MetadataNotFound |
---|---|
Returns: | metadata |
Get a project by ID.
Returns: | user_ref |
---|---|
Raises : | keystone.exception.ProjectNotFound |
Get a tenant by name.
Returns: | tenant_ref |
---|---|
Raises : | keystone.exception.ProjectNotFound |
Lists all users with a relationship to the specified project.
Returns: | a list of user_refs or an empty set. |
---|---|
Raises : | keystone.exception.ProjectNotFound |
Get the tenants associated with a given user.
Returns: | a list of tenant_id’s. |
---|---|
Raises : | keystone.exception.UserNotFound |
Get a role by ID.
Returns: | role_ref |
---|---|
Raises : | keystone.exception.RoleNotFound |
Get the roles associated with a user within given domain.
This includes roles directly assigned to the user on the domain, as well as those by virtue of group membership.
Returns: | a list of role ids. |
---|---|
Raises : | keystone.exception.UserNotFound, keystone.exception.DomainNotFound |
Get the roles associated with a user within given tenant.
This includes roles directly assigned to the user on the project, as well as those by virtue of group membership.
Returns: | a list of role ids. |
---|---|
Raises : | keystone.exception.UserNotFound, keystone.exception.ProjectNotFound |
Get a user by ID.
Returns: | user_ref |
---|---|
Raises : | keystone.exception.UserNotFound |
Get a user by name.
Returns: | user_ref |
---|---|
Raises : | keystone.exception.UserNotFound |
List all credentials in the system.
Returns: | a list of credential_refs or an empty list. |
---|
List all domains in the system.
Returns: | a list of domain_refs or an empty list. |
---|
List all groups in the system.
Returns: | a list of group_refs or an empty list. |
---|
List all groups a user is in
Returns: | a list of group_refs or an empty list. |
---|
List all projects in the system.
Returns: | a list of project_refs or an empty list. |
---|
List all roles in the system.
Returns: | a list of role_refs or an empty list. |
---|
List all projects associated with a given user.
Returns: | a list of project_refs or an empty list. |
---|
List all users in the system.
Returns: | a list of user_refs or an empty list. |
---|
List all users in a group.
Returns: | a list of user_refs or an empty list. |
---|
Remove a role from a user within given tenant.
Raises : | keystone.exception.UserNotFound, keystone.exception.ProjectNotFound, keystone.exception.RoleNotFound |
---|
Removes a user from a group.
Raises : | keystone.exception.NotFound |
---|
Remove user from a tenant
Raises : | keystone.exception.ProjectNotFound, keystone.exception.UserNotFound |
---|
Updates an existing credential.
Raises : | keystone.exception.CredentialNotFound, keystone.exception.Conflict |
---|
Updates an existing domain.
Raises : | keystone.exception.DomainNotFound, keystone.exception.Conflict |
---|
Updates an existing group.
Raises : | keystone.exceptionGroupNotFound, keystone.exception.Conflict |
---|
Updates the metadata for the specified user/group on project/domain.
Returns: | metadata updated |
---|
Updates an existing project.
Raises : | keystone.exception.ProjectNotFound, keystone.exception.Conflict |
---|
Updates an existing role.
Raises : | keystone.exception.RoleNotFound, keystone.exception.Conflict |
---|
Updates an existing user.
Raises : | keystone.exception.UserNotFound, keystone.exception.Conflict |
---|
Bases: keystone.common.manager.Manager
Default pivot point for the Identity backend.
See keystone.common.manager.Manager for more details on how this dynamically calls the backend.
Filter out private items in a user dict.
‘password’, ‘tenants’ and ‘groups’ are never returned.
Returns: | user_ref |
---|