Remove idp policies from policy.v3cloudsample.json

By incorporating system-scope and default roles, we've effectively made these policies obsolete. We can simplify what we maintain and provide a more consistent, unified view of default idp behavior by removing them. Change-Id: I6091d1cdbc4e1fa3a3d5f83a707f003416a43ea0 Closes-Bug: 1804517
author: Lance Bragstad <lbragstad@gmail.com> 2018-11-21 22:26:25 +0000
committer: Lance Bragstad <lbragstad@gmail.com> 2019-02-25 22:03:35 +0000
commit: c0e6d4498a7e6091212b2618a537eb786595397c (patch)
tree: b57189e5bb7deaaef9892dcf5c35848ee09c6f38 /etc
parent: 77e50e49c5af37780b8b4cfe8721ba28e8a58183 (diff)
download: keystone-c0e6d4498a7e6091212b2618a537eb786595397c.tar.gz
1 files changed, 0 insertions, 6 deletions
diff --git a/etc/policy.v3cloudsample.json b/etc/policy.v3cloudsample.json
index 4647e72ec..40e32550c 100644
--- a/etc/policy.v3cloudsample.json
+++ b/etc/policy.v3cloudsample.json
@@ -183,12 +183,6 @@
     "identity:add_endpoint_group_to_project": "rule:admin_required",
     "identity:remove_endpoint_group_from_project": "rule:admin_required",
 
-    "identity:create_identity_provider": "rule:cloud_admin",
-    "identity:list_identity_providers": "rule:cloud_admin",
-    "identity:get_identity_provider": "rule:cloud_admin",
-    "identity:update_identity_provider": "rule:cloud_admin",
-    "identity:delete_identity_provider": "rule:cloud_admin",
-
     "identity:create_protocol": "rule:cloud_admin",
     "identity:update_protocol": "rule:cloud_admin",
     "identity:get_protocol": "rule:cloud_admin",
author	Lance Bragstad <lbragstad@gmail.com>	2018-11-21 22:26:25 +0000
committer	Lance Bragstad <lbragstad@gmail.com>	2019-02-25 22:03:35 +0000
commit	c0e6d4498a7e6091212b2618a537eb786595397c (patch)
tree	b57189e5bb7deaaef9892dcf5c35848ee09c6f38 /etc
parent	77e50e49c5af37780b8b4cfe8721ba28e8a58183 (diff)
download	keystone-c0e6d4498a7e6091212b2618a537eb786595397c.tar.gz