3bdb51e947
Starting with opsrofiler 0.3.1 release there is no need to set HMAC_KEYS and ENABLED arguments in the glance-api-paste.ini and glance-registry-paste.ini files, this can be set in glance-api.conf and glance-registry.conf configuration files. DocImpact Change-Id: I068504913c93be0f506262930eadc2e40879ce0f
36 lines
1.2 KiB
INI
36 lines
1.2 KiB
INI
# Use this pipeline for no auth - DEFAULT
|
|
[pipeline:glance-registry]
|
|
pipeline = healthcheck osprofiler unauthenticated-context registryapp
|
|
|
|
# Use this pipeline for keystone auth
|
|
[pipeline:glance-registry-keystone]
|
|
pipeline = healthcheck osprofiler authtoken context registryapp
|
|
|
|
# Use this pipeline for authZ only. This means that the registry will treat a
|
|
# user as authenticated without making requests to keystone to reauthenticate
|
|
# the user.
|
|
[pipeline:glance-registry-trusted-auth]
|
|
pipeline = healthcheck osprofiler context registryapp
|
|
|
|
[app:registryapp]
|
|
paste.app_factory = glance.registry.api:API.factory
|
|
|
|
[filter:healthcheck]
|
|
paste.filter_factory = oslo_middleware:Healthcheck.factory
|
|
backends = disable_by_file
|
|
disable_by_file_path = /etc/glance/healthcheck_disable
|
|
|
|
[filter:context]
|
|
paste.filter_factory = glance.api.middleware.context:ContextMiddleware.factory
|
|
|
|
[filter:unauthenticated-context]
|
|
paste.filter_factory = glance.api.middleware.context:UnauthenticatedContextMiddleware.factory
|
|
|
|
[filter:authtoken]
|
|
paste.filter_factory = keystonemiddleware.auth_token:filter_factory
|
|
|
|
[filter:osprofiler]
|
|
paste.filter_factory = osprofiler.web:WsgiMiddleware.factory
|
|
hmac_keys = SECRET_KEY #DEPRECATED
|
|
enabled = yes #DEPRECATED
|