openstack
/
kolla-ansible
Code Issues Proposed changes
kolla-ansible/ansible/roles
History
Pedro Henrique f3fbe83708 Add support to OpenID Connect Authentication flow 
This pull request adds support for the OpenID Connect authentication
flow in Keystone and enables both ID and access token authentication
flows. The ID token configuration is designed to allow users to
authenticate via Horizon using an identity federation; whereas the
Access token is used to allow users to authenticate in the OpenStack CLI
using a federated user.

Without this PR, if one wants to configure OpenStack to use identity
federation, he/she needs to do a lot of configurations in the keystone,
Horizon, and register quite a good number of different parameters using
the CLI such as mappings, identity providers, federated protocols, and
so on. Therefore, with this PR, we propose a method for operators to
introduce/present the IdP's metadata to Kolla-ansible, and based on the
presented metadata, Kolla-ansible takes care of all of the
configurations to prepare OpenStack to work in a federated environment.

Implements: blueprint add-openid-support
Co-Authored-By: Jason Anderson <jasonanderson@uchicago.edu>
Change-Id: I0203a3470d7f8f2a54d5e126d947f540d93b8210
 		2021-02-15 16:57:47 -03:00
..
aodh Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
barbican Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
baremetal Merge "Fix remove libvirt apparmor disabled profile" 2021-01-12 13:35:03 +00:00
bifrost Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
blazar Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
ceilometer Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
certificates Fix haproxy bundle generation 2020-10-08 16:57:16 +02:00
chrony Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
cinder Add support for using a tmpfs for Cinder image conversion 2020-12-16 10:02:48 +00:00
cloudkitty Use Docker healthchecks for cloudkitty services 2021-01-07 23:15:53 +08:00
collectd Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
common Remove Retired Karbor Support 2020-12-22 09:50:49 +00:00
cyborg Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
designate Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
destroy remove useless files from destroy role 2020-08-22 23:21:00 +08:00
elasticsearch Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
etcd Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
freezer Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
glance Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
gnocchi Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
grafana Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
haproxy Remove Retired Karbor Support 2020-12-22 09:50:49 +00:00
haproxy-config Add support to OpenID Connect Authentication flow 2021-02-15 16:57:47 -03:00
heat Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
horizon Add support to OpenID Connect Authentication flow 2021-02-15 16:57:47 -03:00
influxdb Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
ironic Merge "Edit ironic inspector pxe filter driver name none to noop" 2020-12-16 09:37:08 +00:00
iscsi Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
kafka Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
keystone Add support to OpenID Connect Authentication flow 2021-02-15 16:57:47 -03:00
kibana Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
kuryr Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
magnum Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
manila Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
mariadb Merge "Negative seqno need to be considered when comparing seqno" 2021-02-01 12:30:59 +00:00
masakari Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
memcached Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
mistral Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
module-load Drop support for /etc/modules 2020-08-25 20:20:57 +01:00
monasca Merge "Fix failure during Monasca Grafana upgrade" 2021-01-05 11:29:40 +00:00
multipathd Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
murano Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
neutron Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
nova Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
nova-cell Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
octavia [docs] Unify project's naming convention 2021-01-27 20:08:41 +01:00
octavia-certificates [docs] Unify project's naming convention 2021-01-27 20:08:41 +01:00
openvswitch Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
ovn Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
ovs-dpdk Fix dpdk deploy failed 2020-12-25 17:36:12 +08:00
panko Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
placement Remove retired Searchlight support 2020-12-15 18:37:34 -06:00
prechecks Remove support for Ubuntu Bionic 18.04 hosts 2020-12-21 10:57:20 +00:00
prometheus Merge "Add Prometheus 2.x deployment" 2021-01-15 11:57:52 +00:00
prune-images Performance: replace unconditional include_tasks with import_tasks 2020-08-28 16:12:03 +00:00
qdrouterd Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
rabbitmq Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
rally Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
redis Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
sahara Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
senlin Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
service-cert-copy/tasks Add support for encrypting backend Keystone HAProxy traffic 2020-04-09 09:22:55 +00:00
service-ks-register Remove delegate_to from service-ks-register tasks 2019-09-26 10:38:35 +01:00
service-precheck Add Ansible group check to prechecks 2020-02-28 16:23:14 +00:00
service-rabbitmq Configure RabbitMQ user tags in nova-cell role 2020-05-15 16:02:46 +01:00
service-stop/tasks Fix kolla-ansible stop with heterogeneous hosts 2020-03-23 17:21:53 +00:00
skydive Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
solum Fixes solum_api Listening on 127.0.0.1 2021-01-05 09:31:29 +00:00
storm Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
swift Merge "Remove swift sanity check" 2021-01-02 20:33:38 +00:00
tacker Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
telegraf Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
tempest Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
trove Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
vitrage Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
vmtp Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
watcher Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00
zookeeper Revert "Performance: Use import_tasks in the main plays" 2020-12-14 10:36:55 +00:00
zun Merge "Revert "Performance: Use import_tasks in the main plays"" 2020-12-15 19:52:24 +00:00