Skip to content

[DOC] Improve clarity for dervied API key behaviour #57572

New issue
New issue
Closed
Closed
[DOC] Improve clarity for dervied API key behaviour#57572
Assignees
jrodewig
Labels
:Security/AuthenticationLogging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)>docsGeneral docs changesTeam:DocsMeta label for docs teamTeam:SecurityMeta label for security team
@ywangd

Description

@ywangd
ywangd
opened on Jun 3, 2020

The 7.6.2 breaking changes says:

To create derived keys with no privileges, you must explicitly specify an empty role descriptor.

This could give users the impression that there are options other than "no privileges". But in fact, this is the only option, i.e. derived keys must be created with no privilege. We could improve the wording so the intention is more explicit.

Metadata

Metadata

Assignees

Labels

:Security/AuthenticationLogging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)>docsGeneral docs changesTeam:DocsMeta label for docs teamTeam:SecurityMeta label for security team

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions