SPEC incorrect about POST /tokens
Bug #843184 reported by
klmitch
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
High
|
Unassigned |
Bug Description
Page 21 of the spec says that:
POST /tokens
allows you to authenticate against a Keystone server.
This is incorrect. ANY HTTP method supplied to /v2.0/tokens, including DELETE, GET and PUT will allow you to authenticate if the request body has correct credentials.
Either spec or code should change.
To post a comment you must log in.