Details

    • Type: Story
    • Status: Resolved (View workflow)
    • Priority: Medium
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 8.8.2.0
    • Component/s: None
    • Labels:

      Description

      There is a new configuration option called rax:isTenant that you can put on a WADL param to have it extract the param as a tenant. It is disabled by default, but rax:roles will enable it if it sees a role with the pattern role/{tenantParam}. So technically, you don’t need to change anything in API Validator — unless you want to enabled rax:isTenant without enabling rax:roles — which means tenant roles get resolved but no authorization is performed. That’s useful in cases where you want to do authorization in another filter down the chain.

      We won't need to make any changes in API Checker since the updated features are accessible in the WADL. We will need to update Simple RBAC in order to let the user set the header parameter at the top of the WADL through a new configuration option.

      The new configuration option attribute that will be called tenant-header-name on the simple-rbac element.

      Acceptance Criteria:

      • API Validation supports multiple tenants.
        • Even though we won't be making updates to API Validation, we want to add some tests.
      • Simple RBAC supports multiple tenants.

        Attachments

          Issue links

            Activity

              People

              • Assignee:
                wdschei Bill Scheidegger
                Reporter:
                mario.lopez Mario Lopez
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: