From 63962fbbe41fe966df96fe2e1bb30943e7ae4047 Mon Sep 17 00:00:00 2001 From: Lance Bragstad Date: Fri, 11 Aug 2017 19:37:07 +0000 Subject: [PATCH] Remove keystone configs for ldap read/write Configuration options that toggle support for LDAP read/write were deprecated and removed as of the Ocata release: I13eada3d5c3a166223c3e3ce70b7054eaed1003a This means we no longer need to clutter the domain-specific configuration with these values since they are no longer used. Change-Id: I23b5b994862f066c3d48ce524c396faecabf60f8 --- lib/keystone | 6 ------ 1 file changed, 6 deletions(-) diff --git a/lib/keystone b/lib/keystone index 1061081a5e..4a4a30f0cc 100644 --- a/lib/keystone +++ b/lib/keystone @@ -626,12 +626,6 @@ function create_ldap_domain { iniset $KEYSTONE_LDAP_DOMAIN_FILE identity driver "ldap" # LDAP settings for Users domain - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap group_allow_delete "False" - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap group_allow_update "False" - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap group_allow_create "False" - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_allow_delete "False" - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_allow_update "False" - iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_allow_create "False" iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_tree_dn "ou=Users,$LDAP_BASE_DN" iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_objectclass "inetOrgPerson" iniset $KEYSTONE_LDAP_DOMAIN_FILE ldap user_name_attribute "cn"