OpenStack Identity (keystone)

Restrict Service Catalog in Auth Response

Registered by Chris Friesen on 2017-09-15

Currently when authenticating the default response is to return the full service catalog. In many cases, clients only care about the endpoints for a single service and a single region, so we could save time and compute power by only retrieving/returning the information the client cares about. Accordingly the proposal is to add optional arguments to indicate the service/region of interest, and these would be used to limit the catalog returned in the response.

Blueprint information

Status:: Complete

Approver:: None

Priority:: Undefined

Drafter:: Chris Friesen

Direction:: Needs approval

Assignee:: None

Definition:: Obsolete

Series goal:: None

Implementation:: Unknown

Milestone target:: None

Completed by: Lance Bragstad on 2019-02-13

Related branches

Related bugs

Sprints

Whiteboard

(lbragstad) 19-02-13: Hi Chris, this sounds like something we talked about during the Denver PTG in 2017? If I remember correctly, this was proposed as a way to get around performance issues due to catalog size? Is there still a need for this functionality? If so, please don't hesitate to propose a specification to the openstack/keystone-specs repository.

(cfriesen) 19-02-13: at this time the performance gains are not worth the code churn. this work is essentially shelved.

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

Ken Young