For a better documentation organization, this
patch limits all lines to a maximum of 79
characters in configuration.rst. In addition,
it ensures that maximum length is always used.
Code blocks and links are exceptions.
Partial-Bug: #1409203
Change-Id: I99ccd56a8dcc0cd35cb1a3823a1f3803acdf00ac
This patch fixes several sentences that contain
double-spacing, where just one space is needed.
Partial-Bug: #1409203
Change-Id: I6a79058bf14594c435521048e1abdddb2dcfbf24
This patch fixes several typos in
configuration.rst, such as "it's", where it
should be the possessive pronoun "its".
Partial-Bug: #1409201
Change-Id: I8abc2385a4d9543e5028276843c7c13d176ce1df
Currently, some parts of the federation docs points to links on
github.com. We should use the new specs.o.org/keystone/api links
instead.
Change-Id: I155e7491a9033c794ef7582bca18286b1b4a80aa
Due to an increasing number of incompatibilities between Keystone
dependencies and OS X (openssl, ldap, eventlet), this drops support for
Keystone development on OS X.
Change-Id: I3c8b3b165487e460a06b43dd44d701995fa3b655
The documentation is modified in order to allow mulitple
IdPs using the OS-Federation avoiding conflicts among them.
The previous proposed configuration allows user from one IdP
to get mapped as user from a different IdP. With the chenge
proposed this is not anymore possible.
Change-Id: I9d62a840c122fb36c02c56a84c4f2ef8c30303c4
Closes-Bug: 1390124
OAuth headers will not be passed in if operating Keystone under
Apache. Mention this in the docs that are used to enable OAuth,
so a deployer can know it's a configuration setting in mod_wsgi.
Partial-Bug: #1392584
Change-Id: I12e734650d9428460522e6b8f04baf7325bfc778
When enabling the domain specific backends configuration, the
user needs to specify a domain, by passing as a filter in the
call or by using a domain scoped token.
Change-Id: I5b19b6d7091df474a7b68d4ffdb052efbb8e7104
Partial-Bug: 1387379
The generic 'configure federation' section has several references
to SAML and shib, we should move those to the shib specific doc.
Change-Id: Ie626a5039d33683c04cd964674ee2a9aab98c215
Add minor changes to the code to support the apache module
mod_auth_openidc (https://github.com/pingidentity/mod_auth_openidc)
Also add documention on how to setup mod_auth_openidc for
SP federation.
implements: bp openid-connect
Change-Id: Ia48e94905de0a9ee0e3c8d4f007075cba6e7e770
Right now, is only possible to make k2k work via
SAML ECP, using it in the examples gives a hint
to the reader about the next steps (send SAML
assertion).
Change-Id: I5670328b55051f4c49c9a5557078079f6f19c804
Remove the unused ec2 driver option from the config. This option
is unused since the credential backend is used for the ec2 contrib
extension.
Change-Id: I5385a086210e415a14b0ed1605c9ded50a280ad2
Add some notes about authenticating with v3 keystone and
openstackclient. Also add some examples that don't exist in v2.0,
like domains and groups.
Change-Id: I92f9f9ab3ed4657f0771ad284ee6c4c613eca27c
These docs are sorely out of date; are littered with references
to tenants, and reference the soon-to-be-depreated keystone CLI.
Change-Id: Idaa360446d9a0b797044c277f224758505375650
We should start encouraging the use of openstackclient in the
Keystone documentation. However, maintain some references to
keystoneclient's CLI for backwards compatability purposes.
Change-Id: I16fa302c2cd5bf3592725ef7f3ef6c5ba6e83354
By using the code directive the doc generated adds some basic
syntax highlighting, making it much easier to read.
Change-Id: I865085b833dbeba841a4de9111167d5e7aafba98
In an effort to make 'configuration.rst' less bloated, move
common cli examples to their own section. Changed the titling
so they are no longer subtitles of another section.
Change-Id: I2785cbe8563e5adcae65aebf88152a5e055c28a9
Lots of lines that were well over 80 characters; several code
examples were missing code-block syntax. General inconsistencies
between what is actually available vs. what is documented.
Change-Id: I726e13aa7c333973cf92bbe1550b939c634db493