keystone.policy package¶
Subpackages¶
Submodules¶
keystone.policy.controllers module¶
-
class
keystone.policy.controllers.PolicyV3(*args, **kwargs)[source]¶ Bases:
keystone.common.controller.V3Controller-
collection_name= 'policies'¶
-
member_name= 'policy'¶
-
keystone.policy.core module¶
Main entry point into the Policy service.
-
class
keystone.policy.core.Manager(*args, **kwargs)[source]¶ Bases:
keystone.common.manager.ManagerDefault pivot point for the Policy backend.
See
keystone.common.manager.Managerfor more details on how this dynamically calls the backend.-
driver_namespace= 'keystone.policy'¶
-
-
class
keystone.policy.core.PolicyDriverV8[source]¶ Bases:
object-
create_policy(policy_id, policy)[source]¶ Store a policy blob.
Raises: keystone.exception.Conflict – If a duplicate policy exists.
-
delete_policy(policy_id)[source]¶ Remove a policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-
enforce(context, credentials, action, target)[source]¶ Verify that a user is authorized to perform action.
For more information on a full implementation of this see: keystone.policy.backends.rules.Policy.enforce
-
get_policy(policy_id)[source]¶ Retrieve a specific policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-
update_policy(policy_id, policy)[source]¶ Update a policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-