Details
-
Type: extRequest
-
Status: Closed
-
Priority: Major
-
Resolution: Done
-
Fix Version/s: 2021
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
-
Sender Email:
-
HD-Chapter:Security
-
HD-Enabler:KeyRock
Description
Hello
I am trying to convert an Idm token to a Keystone token. To do so I need the OpenStack tenant Id.
Due to the upgrade my previous api call (GET on https://cloud.lab.fiware.org/keystone/v2.0/tenants with the Idm token) seems obsolete.
So I tried use the call described in the KeyRock documentation: https://account.lab.fiware.org/user?access_token=xxxxxxxxxx .
But my problem is that my request does return a partial result:
> curl -k -X GET https://account.lab.fiware.org/user?access_token=CtoNc8gdMmeWsrPAE6bYy4NfYbPBOj
> {"organizations": [], "displayName": "Mario L___-___s", "roles": [
], "app_id": "1d75df2ec0c1478db98a3c8db3169d63", "email":
> "mario.l_______s@t_______p.com", "id": "mario-l__-___s"}
The 'organizations' field is empty when I use this call with a token bound to my Idm application. (As a side not, if I "steal" and use the idm token of the cloud portal I obtain with this call a populated list with the data I require .)
So is there an another way to retrieve an user tenant id by using the Idm token ?. Or should I somehow change my application in the Idm ?.
Thanks
Geoffroy
[@@ THALES GROUP INTERNAL @@]
_______________________________________________
Fiware-lab-help mailing list
Fiware-lab-help@lists.fi-ware.org
https://lists.fi-ware.org/listinfo/fiware-lab-help
[Created via e-mail received from: CHOLLON Geoffroy <geoffroy.chollon@thalesgroup.com>]
Issue Links
- relates to
-
HELP-3055 FIWARE.Request.Tech.Security.IDM-KeyRock.retrievetheTenantinformation
- Closed
Activity
- All
- Comments
- History
- Activity
- Transitions
Hi,
please use the Keystone API directly to cloud.lab.fiware.org:4730.
BR