Main entry point into the Token Persistence service.
Bases: object
The token_api provider.
This class is a proxy class to the token_provider_api’s persistence manager.
Bases: keystone.common.manager.Manager
Default pivot point for the Token Persistence backend.
See keystone.common.manager.Manager for more details on how this dynamically calls the backend.
Delete all tokens for a given domain.
It will delete all the project-scoped tokens for the projects that are owned by the given domain, as well as any tokens issued to users that are owned by this domain.
However, deletion of domain_scoped tokens will still need to be implemented as stated in TODO below.
Delete all tokens for a given user or user-project combination.
This method adds in the extra logic for handling trust-scoped token revocations in a single call instead of needing to explicitly handle trusts in the caller’s logic.
Delete all tokens for a list of user_ids.
Parameters: |
|
---|
Bases: object
Interface description for a Token driver.
Create a token by id and data.
Parameters: |
|
---|
{
expires=''
id=token_id,
user=user_ref,
tenant=tenant_ref,
metadata=metadata_ref
}
Returns: | token_ref or None. |
---|
Deletes a token by id.
Parameters: | token_id (string) – identity of the token |
---|---|
Returns: | None. |
Raises keystone.exception.TokenNotFound: | |
If the token doesn’t exist. |
Deletes tokens by user.
If the tenant_id is not None, only delete the tokens by user id under the specified tenant.
If the trust_id is not None, it will be used to query tokens and the user_id will be ignored.
If the consumer_id is not None, only delete the tokens by consumer id that match the specified consumer id.
Parameters: |
|
---|---|
Returns: | The tokens that have been deleted. |
Raises keystone.exception.TokenNotFound: | |
If the token doesn’t exist. |
Get a token by id.
Parameters: | token_id (string) – identity of the token |
---|---|
Returns: | token_ref |
Raises keystone.exception.TokenNotFound: | |
If the token doesn’t exist. |