diff options
| author | Brant Knudson <bknudson@us.ibm.com> | 2014-10-11 09:55:23 -0500 |
|---|---|---|
| committer | Brant Knudson <bknudson@us.ibm.com> | 2014-10-12 11:23:36 -0500 |
| commit | eb251b5af96ba031fbb04de32d9cdec8917b3b23 (patch) | |
| tree | d2a9fed0e0e990a10472ee13700aba30ad20c1ad /doc | |
| parent | 89dc951f7d5a603f0c34b7c2cb9f7d26d73d9916 (diff) | |
| download | python-keystoneclient-eb251b5af96ba031fbb04de32d9cdec8917b3b23.tar.gz | |
Document session usage first
Since we'd prefer developers to use the session method when
constructing the Client instance, document it first.
Change-Id: I8998a9962fd541bafae32b3443d7d4767da74257
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/source/using-api-v3.rst | 54 |
1 files changed, 30 insertions, 24 deletions
diff --git a/doc/source/using-api-v3.rst b/doc/source/using-api-v3.rst index 1327446..0d8cbda 100644 --- a/doc/source/using-api-v3.rst +++ b/doc/source/using-api-v3.rst @@ -80,11 +80,32 @@ exception it will raise an instance of subclass of ``keystoneclient.exceptions.ClientException`` (see :py:class:`keystoneclient.openstack.common.apiclient.exceptions.ClientException`) -Authenticating -============== +Authenticating Using Sessions +============================= -You can authenticate against Keystone using a username, a user domain -name (which will default to 'Default' if it is not specified) and a +Instantiate a :py:class:`keystoneclient.v3.client.Client` using a +:py:class:`~keystoneclient.session.Session` to provide the authentication +plugin, SSL/TLS certificates, and other data:: + + >>> from keystoneclient.auth.identity import v3 + >>> from keystoneclient import session + >>> from keystoneclient.v3 import client + >>> auth = v3.Password(auth_url='https://my.keystone.com:5000/v3', + ... user_id='myuserid', + ... password='mypassword', + ... project_id='myprojectid') + >>> sess = session.Session(auth=auth) + >>> keystone = client.Client(session=sess) + +For more information on Sessions refer to: `Using Sessions`_. + +.. _`Using Sessions`: using-sessions.html + +Non-Session Authentication (deprecated) +======================================= + +The *deprecated* way to authenticate is to pass the username, the user's domain +name (which will default to 'Default' if it is not specified), and a password:: >>> from keystoneclient import client @@ -96,6 +117,11 @@ password:: ... username=username, password=password, ... user_domain_name=user_domain_name) +A :py:class:`~keystoneclient.session.Session` should be passed to the Client +instead. Using a Session you're not limited to authentication using a username +and password but can take advantage of other more secure authentication +methods. + You may optionally specify a domain or project (along with its project domain name), to obtain a scoped token:: @@ -111,23 +137,3 @@ domain name), to obtain a scoped token:: ... user_domain_name=user_domain_name, ... project_name=project_name, ... project_domain_name=project_domain_name) - -Using Sessions -============== - -It's also possible to instantiate a :py:class:`keystoneclient.v3.client.Client` -class by using :py:class:`keystoneclient.session.Session`.:: - - >>> from keystoneclient.auth.identity import v3 - >>> from keystoneclient import session - >>> from keystoneclient.v3 import client - >>> auth = v3.Password(auth_url='https://my.keystone.com:5000/v3', - ... user_id='myuserid', - ... password='mypassword', - ... project_id='myprojectid') - >>> sess = session.Session(auth=auth) - >>> keystone = client.Client(session=sess) - -For more information on Sessions refer to: `Using Sessions`_. - -.. _`Using Sessions`: using-sessions.html |