From 6c0f62e40057079a161e82f6ea0e67c4d8fc7b8a Mon Sep 17 00:00:00 2001 From: Ziad Sawalha Date: Fri, 10 Jun 2011 18:10:22 -0500 Subject: API v2.0 Proposal --- docs/guide/src/docbkx/identitydevguide.xml | 35 +++++++++++++++++------------- 1 file changed, 20 insertions(+), 15 deletions(-) (limited to 'docs/guide') diff --git a/docs/guide/src/docbkx/identitydevguide.xml b/docs/guide/src/docbkx/identitydevguide.xml index e0e9ef11..cd4d4c9a 100755 --- a/docs/guide/src/docbkx/identitydevguide.xml +++ b/docs/guide/src/docbkx/identitydevguide.xml @@ -60,7 +60,7 @@ API v2.0 Keystone - OpenStack Identity - 2011-06-01 + 2011-06-10 Copyright details are filled in by the template. @@ -106,11 +106,18 @@ resources are accessible with it. A token may be revoked at anytime and is valid for a finite duration. + + While Keystone supports token-based authentication in this release, + the intention is for it to support additional protocols in the + future. The desire is to have it be an integration service, and not + a full-fledged identoty store and management solution. +
Tenant - Depending on the operator, a tenant may map to a customer, + A container used to group or isolate resources and/or identity + objects. Depending on the operator, a tenant may map to a customer, account, organization, or project.
@@ -118,12 +125,9 @@ User Users have a login and may be assigned tokens to access - resources. + resources. Users may be directly assigned to a particular tenant and + behave as if they are contained in that tenant. - - This is a Rackspace extensions to support a local identity store. - Extending this to work on any backing store is out of scope. -
Role @@ -731,11 +735,11 @@ Host: identity.api.openstack.org/v1.1/
Overview The operations described in this chapter allow clients to authenticate and get - access tokens and endpoints. + access tokens and service endpoints.
Core Service API Proposal - The following table of calls is proposed as code Keystone APIs + The following table of calls is proposed as core Keystone APIs &URI_REFHEAD; @@ -844,7 +848,7 @@ Host: identity.api.openstack.org/v1.1/
Overview The operations described in this chapter allow service developers to get and validate - access tokens, manage users, and manage tenants. + access tokens, manage users, tenants, roles, and service endpoints.
Core Admin API Proposal @@ -910,7 +914,7 @@ Host: identity.api.openstack.org/v1.1/ &DELETE; /tokens/tokenId - Revoke an existing token. + Revoke an existing token. @@ -949,7 +953,7 @@ Host: identity.api.openstack.org/v1.1/ &GET; /tenants/tenantId/users - get tenant users. + Get a tenant's users. @@ -1259,7 +1263,7 @@ Host: identity.api.openstack.org/v1.1/ &PUT; /tenants/tenantId - Update a tenant.. + Update a tenant. @@ -1745,7 +1749,7 @@ Host: identity.api.openstack.org/v1.1/
Concepts - The concepts that are specific to rackspace extensions are: + The concepts that are specific to Rackspace extensions are:
Group @@ -1758,7 +1762,8 @@ Host: identity.api.openstack.org/v1.1/
- The following table of calls is proposed as rackspace specific extensions for Keystone APIs + The following table of calls is proposed as Rackspace-specific + extensions for Keystone APIs in this version (2.0)
Global Groups -- cgit