Enabling the Endpoint Filter ExtensionΒΆ
To enable the endpoint filter extension:
Add the endpoint filter extension catalog driver to the
[catalog]
section inkeystone.conf
. For example:[catalog] driver = catalog_sql
Add the
endpoint_filter_extension
filter to theapi_v3
pipeline inkeystone-paste.ini
. This must be added afterjson_body
and before the last entry in the pipeline. For example:[pipeline:api_v3] pipeline = sizelimit url_normalize build_auth_context token_auth admin_token_auth json_body ec2_extension_v3 s3_extension simple_cert_extension revoke_extension endpoint_filter_extension service_v3
Create the endpoint filter extension tables if using the provided sql backend. For example:
./bin/keystone-manage db_sync --extension endpoint_filter
Optionally, change
return_all_endpoints_if_no_filter
the[endpoint_filter]
section inkeystone.conf
to return an empty catalog if no associations are made. For example:[endpoint_filter] return_all_endpoints_if_no_filter = False