# Pastebin GZLcP1T9
    policy.DocumentedRuleDefault(
        name=base.IDENTITY % 'get_auth_domains',
        check_str='',
        description=('List all domains a user has access to via role '
                     'assignments.'),
        operations=[
            {
                'path': '/v3/auth/domains',
                'method': 'GET'
            },
            {
                'path': '/v3/auth/domains',
                'method': 'HEAD'
            }
        ]
    ),