• Type: Story
    • Status: Resolved (View workflow)
    • Priority: Medium
    • Resolution: Done
    • Affects versions: None
    • Fix versions:
    • Components: None
    • Labels:


      There is a new configuration option called rax:isTenant that you can put on a WADL param to have it extract the param as a tenant. It is disabled by default, but rax:roles will enable it if it sees a role with the pattern role/{tenantParam}. So technically, you don’t need to change anything in API Validator — unless you want to enabled rax:isTenant without enabling rax:roles — which means tenant roles get resolved but no authorization is performed. That’s useful in cases where you want to do authorization in another filter down the chain.

      We won't need to make any changes in API Checker since the updated features are accessible in the WADL. We will need to update Simple RBAC in order to let the user set the header parameter at the top of the WADL through a new configuration option.

      The new configuration option attribute that will be called tenant-header-name on the simple-rbac element.

      Acceptance Criteria:

      • API Validation supports multiple tenants.
        • Even though we won't be making updates to API Validation, we want to add some tests.
      • Simple RBAC supports multiple tenants.


          Issue links



              • Assignee:
                wdschei Bill Scheidegger
                mario.lopez Mario Lopez
              • Votes:
                0 Vote for this issue
                1 Start watching this issue


                • Created: