From f1cc3cfc42db902589785320547204388aa170a3 Mon Sep 17 00:00:00 2001 From: Joe Heck Date: Sat, 13 Oct 2012 00:15:39 +0000 Subject: removing repeat attempt at authorization in client blueprint solidify-python-api * extended and updated documentation strings * updated README.rst with latest options * made debug a pass-through value, optionally set on client (instead of just being pulled from environment variable) * adding AccessInfo object and associated tests (access.AccessInfo meant to be a cacheable object external to client and ultimately to replace service_catalog and it's existing functionality) * extending authtoken to support lists of endpoints * maintaining a single entity for client.management_url with first from list of possible endpoints * create project_name and project_id synonyms to match tenant_name and tenant_id * replacing authenticate call to a pure method, not overloading the resource/manager path that confuses base URL concepts. * throw AuthorizationFailure if client attempts to access keystone resources before it has a management url * special case listing tenant using auth_url for unscoped tokens authorized through client * special case listing tokens.authenticate for Dashboard to allow unscoped tokens to hand back parity information to dashboard Change-Id: I4bb3a1b6a5ce2c4b3fbcebeb59116286cac8b2e3 --- README.rst | 40 ++++++++++++++++++++++++++++++---------- 1 file changed, 30 insertions(+), 10 deletions(-) (limited to 'README.rst') diff --git a/README.rst b/README.rst index 6106b48..e356d6a 100644 --- a/README.rst +++ b/README.rst @@ -78,14 +78,18 @@ You'll find complete documentation on the shell by running [--os-tenant-id ] [--os-auth-url ] [--os-region-name ] [--os-identity-api-version ] - [--token ] [--endpoint ] + [--os-token ] + [--os-endpoint ] + [--os-cacert ] [--os-cert ] + [--os-key ] [--insecure] [--token ] + [--endpoint ] ... Command-line interface to the OpenStack Identity API. Positional arguments: - catalog List service catalog, possibly filtered by service. + catalog ec2-credentials-create Create EC2-compatibile credentials for user per tenant ec2-credentials-delete @@ -96,13 +100,12 @@ You'll find complete documentation on the shell by running List EC2-compatibile credentials for a user endpoint-create Create a new endpoint associated with a service endpoint-delete Delete a service endpoint - endpoint-get Find endpoint filtered by a specific attribute or - service type + endpoint-get endpoint-list List configured service endpoints role-create Create new role role-delete Delete role role-get Display role details - role-list List all available roles + role-list List all roles service-create Add service to Service Catalog service-delete Delete service from Service Catalog service-get Display service from Service Catalog @@ -112,18 +115,22 @@ You'll find complete documentation on the shell by running tenant-get Display tenant details tenant-list List all tenants tenant-update Update tenant name, description, enabled status - token-get Display the current user token + token-get user-create Create new user user-delete Delete user + user-get Display user details. user-list List users user-password-update Update user password user-role-add Add role to user + user-role-list List roles granted to a user user-role-remove Remove role from user - user-role-list List roles for user user-update Update user's name, email, and enabled status discover Discover Keystone servers and show authentication protocols and + bootstrap Grants a new role to a new user on a new tenant, after + creating each. + bash-completion Prints all of the commands and options to stdout. help Display help about this program or one of its subcommands. @@ -142,9 +149,22 @@ You'll find complete documentation on the shell by running Defaults to env[OS_REGION_NAME] --os-identity-api-version Defaults to env[OS_IDENTITY_API_VERSION] or 2.0 + --os-token + Defaults to env[OS_SERVICE_TOKEN] + --os-endpoint + Defaults to env[OS_SERVICE_ENDPOINT] + --os-cacert + Defaults to env[OS_CACERT] + --os-cert + Defaults to env[OS_CERT] + --os-key Defaults to env[OS_KEY] + --insecure Explicitly allow keystoneclient to perform "insecure" + SSL (https) requests. The server's certificate will + not be verified against any certificate authorities. + This option should be used with caution. --token - Defaults to env[SERVICE_TOKEN] + Deprecated. use --os-token --endpoint - Defaults to env[SERVICE_ENDPOINT] + Deprecated. use --os-endpoint -See "keystone help COMMAND" for help on a specific command. + See "keystone help COMMAND" for help on a specific command. -- cgit v1.2.1