python-openstackclient/bug-2006635-3110f7a87a186e62.yaml at 5bdcd590ecacbc0aa8db2cbafa0ab1a9f3c28ce0 - python-openstackclient - OpenDev: Free Software Needs Free Tools

openstack/python-openstackclient

Lance Bragstad e246732670 Bypass user and group verification in RemoveRole

Keystone let's users remove role assignments that reference non-existent
users and groups. This is nice when keystone backs to an identity store
like LDAP and users or groups are removed.

Previously, openstackclient would validate the user and group existed in
keystone before sending the request to delete the role assignment. This
commit updates the code to bypass that validation so that users can use
IDs to forcibly cleanup role assignments.

Change-Id: I102b41677736bbe37a82abaa3c5b3e1faf2475d5
Story: 2006635
Task: 36848

2020-08-12 12:24:17 -05:00

8 lines

194 B

YAML

Raw Blame History

 ---
 fixes:
   - |
     You can now remove role assignments from keystone that reference non-existent
     users or groups.
     [Bug `2006635 <https://storyboard.openstack.org/#!/story/2006635>`_]