diff --git a/defaults/main.yml b/defaults/main.yml index 94c7b76e..1cac8585 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -460,7 +460,7 @@ keystone_sp: {} # metadata_file: 'metadata-keystone-idp.xml' # metadata_reload: 1800 # federated_identities: -# - domain: default +# - domain: Default # project: fedproject # group: fedgroup # role: member @@ -497,7 +497,7 @@ keystone_sp: {} # metadata_file: 'metadata-testshib-idp.xml' # metadata_reload: 1800 # federated_identities: -# - domain: default +# - domain: Default # project: fedproject # group: fedgroup # role: member @@ -523,7 +523,7 @@ keystone_sp: {} # metadata_file: 'metadata-adfs-idp.xml' # metadata_reload: 1800 # federated_identities: -# - domain: default +# - domain: Default # project: fedproject # group: fedgroup # role: member @@ -562,7 +562,7 @@ keystone_sp: {} # entity_ids: # - 'https://identity-provider/openid-endpoint/' # federated_identities: -# - domain: default +# - domain: Default # project: fedproject # group: fedgroup # role: member diff --git a/releasenotes/notes/federated_domain_names-4e169b8b9a947940.yaml b/releasenotes/notes/federated_domain_names-4e169b8b9a947940.yaml new file mode 100644 index 00000000..d323661d --- /dev/null +++ b/releasenotes/notes/federated_domain_names-4e169b8b9a947940.yaml @@ -0,0 +1,13 @@ +--- +issues: + - | + Due to the underlying `bug `_ + in Ansible collections for OpenStack, ``Default`` domain name can be + renamed to ``default`` under certain conditions. + One known example is having ``domain: default`` defenition under + ``keystone_sp -> trusted_idp_list -> federated_identities`` structure. +upgrade: + - | + Please, make sure that in case of federation usage you define domain + name instead of it's ID (ie. ``Default`` instead of ``default``) + under ``keystone_sp -> trusted_idp_list -> federated_identities``