Container Infrastructure Management Service for OpenStack

Go to file

Feilong Wang d8df9d0c36 [fedora-atomic][k8s] Support default Keystone auth policy file With the new config option `keystone_auth_default_policy`, cloud admin can set a default keystone auth policy for k8s cluster when the keystone auth is enabled. As a result, user can use their current keystone user to access k8s cluster as long as they're assigned correct roles, and they will get the pre-defined permissions set by the cloud provider. The default policy now is based on the v2 format recently introduced in k8s-keystone-auth which is getting more useful now. For example, in v1 it doesn't support a policy for user to access resources from all namespaces but kube-system, but v2 can do that. NOTE: Now we're using openstackmagnum dockerhub repo until CPO team fixing their image release issue. Task: 30069 Story: 1755770 Change-Id: I2425e957bd99edc92482b6f11ca0b1f91fe59ff6		2019-06-11 11:57:15 +12:00
api-ref/source	Merge "Move openstackdocstheme to extensions in api-ref"	2019-05-01 21:03:47 +00:00
contrib	Support multi DNS server	2019-04-08 23:08:45 +00:00
devstack	[fedora-atomic][k8s] Support default Keystone auth policy file	2019-06-11 11:57:15 +12:00
doc	[fedora-atomic][k8s] Support default Keystone auth policy file	2019-06-11 11:57:15 +12:00
dockerfiles	k8s_fedora: Deploy tiller	2019-02-11 11:18:08 +01:00
etc/magnum	[fedora-atomic][k8s] Support default Keystone auth policy file	2019-06-11 11:57:15 +12:00
magnum	[fedora-atomic][k8s] Support default Keystone auth policy file	2019-06-11 11:57:15 +12:00
playbooks	Merge "Disable broken image building"	2019-05-01 13:30:01 +00:00
releasenotes	[fedora-atomic][k8s] Support default Keystone auth policy file	2019-06-11 11:57:15 +12:00
specs	Document use of kube_tag label	2018-02-13 13:40:34 +00:00
tools	containers: clean-up build code	2018-12-18 19:47:56 -05:00
.coveragerc	Cleanup coverage configuration	2016-08-28 21:11:07 +01:00
.gitignore	Switch to stestr	2018-07-13 13:05:52 +07:00
.gitreview	OpenDev Migration Patch	2019-04-19 19:44:16 +00:00
.mailmap	Initial commit from github (squashed)	2014-11-18 09:23:37 -05:00
.stestr.conf	Switch to stestr	2018-07-13 13:05:52 +07:00
.testr.conf	Remove minion dependency on master	2016-03-04 07:41:12 -05:00
.zuul.yaml	Disable broken image building	2019-04-30 15:26:02 +02:00
CONTRIBUTING.rst	Workflow documentation is now in infra-manual	2014-12-05 03:30:45 +00:00
HACKING.rst	Add a hacking rule for string interpolation at logging	2017-07-15 14:49:45 +08:00
LICENSE	Initial commit from github (squashed)	2014-11-18 09:23:37 -05:00
README.rst	fix bug link in readme	2018-12-08 17:31:44 +00:00
babel.cfg	Initial commit from github (squashed)	2014-11-18 09:23:37 -05:00
bindep.txt	Add bindep.txt file	2018-04-20 14:40:19 -04:00
functional_creds.conf.sample	Use keystone v3 for functional tests	2016-12-05 15:21:09 +01:00
lower-constraints.txt	Add framework for magnum-status upgrade check	2019-01-27 04:26:30 +00:00
requirements.txt	Add framework for magnum-status upgrade check	2019-01-27 04:26:30 +00:00
setup.cfg	Dropping the py35 testing	2019-04-14 23:05:06 +00:00
setup.py	Updated from global requirements	2017-03-07 01:58:36 +00:00
test-requirements.txt	Blacklist bandit 1.6.0 and cap Sphinx on Python2	2019-05-21 13:27:31 +12:00
tox.ini	Dropping the py35 testing	2019-04-14 23:05:06 +00:00

README.rst

Team and repository tags

Magnum

Magnum is an OpenStack project which offers container orchestration engines for deploying and managing containers as first class resources in OpenStack.

For more information, please refer to the following resources:

Free software: under the Apache license
Documentation: https://docs.openstack.org/magnum/latest/
Source: http://git.openstack.org/cgit/openstack/magnum
Blueprints: https://blueprints.launchpad.net/magnum
Bugs: https://storyboard.openstack.org/#!/project/openstack/magnum
REST Client: http://git.openstack.org/cgit/openstack/python-magnumclient
** Release notes:** https://docs.openstack.org/releasenotes/magnum/index.html