Make corrections to the mod_auth_mellon federation documentation for
consistency and clarity, including:
- Remove reference to shibboleth.xml when explaining the remote-id
attribute in the main federation configuration instructions, as this
does not generalize to all IdPs
- Change references from /etc/httpd to /etc/apache2 because the
document begins with an apt-get so it follows that the rest of the
examples should assume a Debian-like environment
- Change references to example IdP 'idp_1' to 'myidp' for consistency
with the shibboleth examples
- Change references to example protocol 'saml2' to 'mapped' since the
saml2 auth plugin was removed[1]
- Remove references to wsgi-keystone.conf since devstack just calls it
keystone.conf, and enabling this vhost is already covered in the
"Running Keystone in HTTPD" section
- Remove reference to the ssl mod: it's obviously recommended but not
strictly relevant to this topic
- Remove instruction to restart apache immediately after enabling
auth_mellon, as it would fail while Mellon is not yet fully
configured. The document already mentions restarting apache after
Mellon is configured.
- Add a link to the mellon_create_metadata.sh script, since this does not
come as an executable with the mod package.
- Add tip about the SP metadata file generated by mod_auth_mellon
- Move paragraph about fetching the IdP metadata to the end of the
section so that the information about generating and uploading the
SP metadata is grouped together
[1] https://review.openstack.org/#/c/374508/
Change-Id: I47255db5e762bd2d2901b78afba2b1efa0c0f224