keystone.policy package¶
Subpackages¶
Submodules¶
keystone.policy.controllers module¶
-
class
keystone.policy.controllers.
PolicyV3
(*args, **kwargs)[source]¶ Bases:
keystone.common.controller.V3Controller
-
collection_name
= 'policies'¶
-
member_name
= 'policy'¶
-
keystone.policy.core module¶
Main entry point into the Policy service.
-
class
keystone.policy.core.
Manager
(*args, **kwargs)[source]¶ Bases:
keystone.common.manager.Manager
Default pivot point for the Policy backend.
See
keystone.common.manager.Manager
for more details on how this dynamically calls the backend.-
driver_namespace
= 'keystone.policy'¶
-
-
class
keystone.policy.core.
PolicyDriverV8
[source]¶ Bases:
object
-
create_policy
(policy_id, policy)[source]¶ Store a policy blob.
Raises: keystone.exception.Conflict – If a duplicate policy exists.
-
delete_policy
(policy_id)[source]¶ Remove a policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-
enforce
(context, credentials, action, target)[source]¶ Verify that a user is authorized to perform action.
For more information on a full implementation of this see: keystone.policy.backends.rules.Policy.enforce
-
get_policy
(policy_id)[source]¶ Retrieve a specific policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-
update_policy
(policy_id, policy)[source]¶ Update a policy blob.
Raises: keystone.exception.PolicyNotFound – If the policy doesn’t exist.
-