orca trust¶
Manage Keystone trusts.
The reference below is generated from the live CLI by mkdocs-click. It
always reflects the version installed.
orca trust¶
Manage Keystone trusts (token delegation).
Usage:
Options:
| Name | Type | Description | Default |
|---|---|---|---|
--help |
boolean | Show this message and exit. | False |
Subcommands
- create: Create a trust (delegation from trustor to trustee).
- delete: Delete a trust.
- list: List trusts.
- show: Show trust details.
orca trust create¶
Create a trust (delegation from trustor to trustee).
Example:
orca trust create \
--trustor
Usage:
Options:
| Name | Type | Description | Default |
|---|---|---|---|
--trustor |
text | Trustor user ID (delegating identity). | Sentinel.UNSET |
--trustee |
text | Trustee user ID (receiving delegation). | Sentinel.UNSET |
--project |
text | Project ID for the trust scope. | None |
--role |
text | Role name to delegate (repeatable). | Sentinel.UNSET |
--impersonate / --no-impersonate |
boolean | Allow trustee to impersonate trustor. | False |
--expires-at |
text | Expiry datetime in ISO 8601 (e.g. 2026-12-31T23:59:59Z). | None |
--uses |
integer | Maximum number of times the trust can be used. | None |
--help |
boolean | Show this message and exit. | False |
orca trust delete¶
Delete a trust.
Usage:
Options:
| Name | Type | Description | Default |
|---|---|---|---|
--yes, -y |
boolean | Skip confirmation. | False |
--help |
boolean | Show this message and exit. | False |
orca trust list¶
List trusts.
Usage:
Options:
| Name | Type | Description | Default |
|---|---|---|---|
--trustor |
text | Filter by trustor user ID. | None |
--trustee |
text | Filter by trustee user ID. | None |
--noindent |
boolean | Disable JSON indentation. | False |
--max-width |
integer | Maximum table width (0 = unlimited). | None |
--fit-width |
boolean | Fit table to terminal width. | False |
--column, -c |
text | Column to include (repeatable). Shows all if omitted. | Sentinel.UNSET |
--format, -f |
choice (table | json | value) |
Output format. | table |
--help |
boolean | Show this message and exit. | False |
orca trust show¶
Show trust details.
Usage:
Options:
| Name | Type | Description | Default |
|---|---|---|---|
--noindent |
boolean | Disable JSON indentation. | False |
--max-width |
integer | Maximum table width (0 = unlimited). | None |
--fit-width |
boolean | Fit table to terminal width. | False |
--column, -c |
text | Column to include (repeatable). Shows all if omitted. | Sentinel.UNSET |
--format, -f |
choice (table | json | value) |
Output format. | table |
--help |
boolean | Show this message and exit. | False |