Enable application_credential auth by default

There's no reason users shouldn't be able to use application credentials out of the box. Make application_credential one of the default enabled auth methods. bp application-credentials Change-Id: Ib8a02ef7b8f0efadfe902d7e517ac702f72fff13
2018-01-18 21:08:29 +01:00 · 2018-01-18 21:08:29 +01:00 · 5e97f2d052
commit 5e97f2d052
parent 0462ff8001
2 changed files with 13 additions and 1 deletions
--- a/keystone/conf/auth.py
+++ b/keystone/conf/auth.py
@ -76,6 +76,16 @@ namespace. You do not need to set this unless you are overriding keystone's own
 `mapped` authentication plugin.
 """))

+application_credential = cfg.StrOpt(
+    'application_credential',
+    help=utils.fmt("""
+Entry point for the application_credential auth plugin module in the
+`keystone.auth.application_credential` namespace. You do not need to set this
+unless you are overriding keystone's own `application_credential`
+authentication plugin.
+"""))
+
+
 GROUP_NAME = __name__.split('.')[-1]
 ALL_OPTS = [
    methods,
@ -84,6 +94,7 @@ ALL_OPTS = [
    external,
    oauth1,
    mapped,
+    application_credential,
 ]


--- a/keystone/conf/constants.py
+++ b/keystone/conf/constants.py
@ -17,7 +17,8 @@ package.
 """


-_DEFAULT_AUTH_METHODS = ['external', 'password', 'token', 'oauth1', 'mapped']
+_DEFAULT_AUTH_METHODS = ['external', 'password', 'token', 'oauth1', 'mapped',
+                         'application_credential']

 _CERTFILE = '/etc/keystone/ssl/certs/signing_cert.pem'
 _KEYFILE = '/etc/keystone/ssl/private/signing_key.pem'