https://etherpad.openstack.org/p/keystone-mitaka-summit-x-project Cross-Project
- Let's finally kill off the discussion of LDAP user list, and settle with listing role assignments instead! (How about lets fix role assignments too?!!! Anybody try "openstack role assignment list" command and actually *like* what it displays? :))
- Many stakeholders have problem with the ephemerality of the users - they need to be able to trace users actions for instance for billing and security. Keystone has native support for CADF events (thanks stevemar), but that's just a half of the solution as nothing consumes them by default. We should think on a solution that will allow deployers to track ephemeral users and make it available in a default DevStack installation. The first shot is Ceilometer/Gnocchi. +1 (henrynash)
- Automatic provisioning of projects when Federated users first log in:
- Notification driven