Add support for using service tokens

This patch configures Cinder to send a service token along with the received user token on requests to other services. This can allow those other services to accept the request even if the user token has been invalidated since received by Cinder. Also with this patch Cinder will accept request from other services with invalid user tokens but valid service tokens. Service tokens exist since Openstack Queens. Closes-Bug: #1992840 Change-Id: I6cb9b1cb257db0b57bd7984c795b8caa1e3b74d9 (cherry picked from commit 81c330b5d8)
2023-05-18 12:21:42 -03:00 · 2023-05-18 12:21:42 -03:00 · b96c85f5a6
parent 68752c604e
commit b96c85f5a6
1 changed files with 2 additions and 0 deletions
--- a/templates/ussuri/cinder.conf
+++ b/templates/ussuri/cinder.conf
@ -58,6 +58,8 @@ cinder_internal_tenant_user_id = {{ admin_user }}
 {% include "parts/backends" %}
 {% include "section-keystone-authtoken-mitaka" %}

+{% include "section-service-user" %}
+
 {% include "parts/section-database" %}

 {% include "section-oslo-messaging-rabbit-ocata" %}