Overview

This specific section covers the interfaces relating to the management of access keys. While these interfaces are heavily influenced by the interface provided by AWS IAM and OpenStack Identity API's, they are not intended to replace these interfaces but complement them.

The Storage as a Service (STaaS) feature will deliver a base set of Service APIs that are intended for deployment, system management, and service operator usage.

This interface is based off of the Keystone credentials API.

Additional notes to be reviewed and considered for the implementation of the API:

  1. In the absence of an external Keystone authentication server for end users, the project ID referenced throughout this document will be the storage account ID. This API continues to use project ID in order to remain faithful to the original Keystone credentials API, and to support future migration to Keystone.
  2. The storage account ID used should be generated by the client creating the credentials with this API, to facilitate migration to Keystone server eventually
  3. The credentials ID throughout this document is the AWS Key, including when the client making the requests with this API is generating the AWS Key