Mapping Extension
Registered by
Steve Martinelli
When an assertion (for example, SAML) comes across, it contains attributes that help form the ephemeral identity and access of the user that already authenticated. It should at a minimum include username, list of roles (if any), domain_id. We can elect to store how these attributes map to keystone attributes.
Blueprint information
- Status:
- Complete
- Approver:
- Dolph Mathews
- Priority:
- Medium
- Drafter:
- Steve Martinelli
- Direction:
- Needs approval
- Assignee:
- Steve Martinelli
- Definition:
- Superseded
- Series goal:
- None
- Implementation:
- Good progress
- Milestone target:
- None
- Started by
- Dolph Mathews
- Completed by
- Dolph Mathews
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
Add mapping function to keystone
Addressed by: https:/
Identity Providers CRUD operations.
(?)