keystone.common.tokenless_auth module

keystone.common.tokenless_auth module¶

class keystone.common.tokenless_auth.TokenlessAuthHelper(env)[source]¶

Bases: ProviderAPIMixin, object

get_mapped_user(project_id=None, domain_id=None)[source]¶

Map client certificate to an existing user.

If user is ephemeral, there is no validation on the user himself; however it will be mapped to a corresponding group(s) and the scope of this ephemeral user is the same as what is assigned to the group.

Parameters:

project_id – Project scope of the mapped user.
domain_id – Domain scope of the mapped user.

Returns:

A dictionary that contains the keys, such as user_id, user_name, domain_id, domain_name

Return type:

dict

get_scope()[source]¶

this page last updated: 2025-03-25 13:31:07

Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.

keystone.common.tokenless_auth module

keystone.common.tokenless_auth module¶

keystone 24.1.1.dev3

Page Contents