f6a0cce440
The OAuth2.0 Access Token API is modified, support to get an OAuth2.0 certificate-bound access token from the keystone identity server with OAuth 2.0 credentials and Mutual-TLS certificates. Co-Authored-By: Hiromu Asahina <hiromu.asahina.az@hco.ntt.co.jp> Change-Id: I885527bec61429b1437a046097a16491848b5a0a Implements: blueprint support-oauth2-mtls
14 lines
745 B
YAML
14 lines
745 B
YAML
---
|
|
features:
|
|
- |
|
|
[`blueprint support-oauth2-mtls <https://blueprints.launchpad.net/keystone/+spec/support-oauth2-mtls>`_]
|
|
Provide the option for users to proof-of-possession of OAuth 2.0 access
|
|
token based on `RFC8705 OAuth 2.0 Mutual-TLS Client Authentication and
|
|
Certificate-Bound Access Tokens`. Users can now use the OAuth 2.0 Access
|
|
Token API to get an OAuth 2.0 certificate-bound access token from the
|
|
keystone identity server with OAuth 2.0 credentials and Mutual-TLS
|
|
certificates. Then users can use the OAuth 2.0 certificate-bound access
|
|
token and the Mutual-TLS certificates to access the OpenStack APIs that use
|
|
the keystone middleware to support OAuth 2.0 Mutual-TLS client
|
|
authentication.
|