Hi Kristy, Have you try the  or @ rule as mentioned here? https://github.com/openstack/keystone/blob/master/keystone/openstack/common/ policy.py#L71 Guang -Original Message- From: K.W.S.Siu [mailto:firstname.lastname@example.org] Sent: Tuesday, August 12, 2014 3:44 AM To: openstack
On Tue, Aug 12, 2014 at 10:30 AM, Yee, Guang email@example.com wrote: Hi Kristy, Have you try the  or @ rule as mentioned here? That still requires valid authentication though, just not any specific authorization. I don't think we have a way to express truly public resources in oslo.policy.