Domain admin cannot manage user, group and domain in own domain
Bug #1600195 reported by
Kenji Ishii
This bug affects 4 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Dashboard (Horizon) |
In Progress
|
Undecided
|
Yaguang Tang | ||
Bug Description
When a user who have a privilege as a domain admin logged in with domain scoped token, he cannot do some operation about user, group.
Because in this case these menu are not displayed (In this case, we assume that keystone v3 policy file (policy.
Originally, this user should be able to create/delete users.
Actually, domain admin cannot do actions below.
- create user
- delete user (from table action)
- delete project (from table action)
- create group
- delete group (from table action)
- add member
- remove member
| Changed in horizon: | |
| assignee: | nobody → Kenji Ishii (ken-ishii) |
| description: | updated |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to horizon (master) | #1 |
| Changed in horizon: | |
| status: | New → In Progress |
| summary: |
- Domain admin cannot create/delete user + Domain admin cannot manage user, group and domain in own domain |
| description: | updated |
| Changed in horizon: | |
| assignee: | Kenji Ishii (ken-ishii) → Yaguang Tang (heut2008) |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Change abandoned on horizon (master) | #2 |
| tags: | added: keystone |
To post a comment you must log in.
Fix proposed to branch: master
Review: https:/