openstack/openstack-ansible-os_keystone
Code Issues Proposed changes
Role os_keystone for OpenStack-Ansible
1,015 Commits 9 Branches 17 Tags 11 MiB
Jinja 69.4%
Python 22%
Shell 8.6%
ce4c6dfe8e
Go to file
Dmitriy Rabotyagov ce4c6dfe8e Ensure correct order for credential rotate/migrate 
Accroding to the note in keystone-manage code the proper order to
execute credetial rotation is to perform rotation first and migrate to
the new private key afterwars.
Our current code was doing vice versa for now. While it should not lead
to any issues as our autorotate script would fix that later on, let's
still improve task ordering and try to catch credential rotation issues
in ansible code as well, not only in autorotate cron job.

[1] f45921840c/keystone/cmd/cli.py (L803-L830)

Related-Bug: #2074196
Change-Id: I231cd6ddbfe837ed590c16c806023075102cc23d
2024-09-09 12:17:51 +00:00
defaults Remove excessive bindings for uWSGI 2024-08-08 20:53:28 +00:00
doc oidc: fix overloading of redirect_uri for cli client 2023-10-20 14:04:31 +01:00
examples Fix example playbook linters 2023-09-29 10:23:38 +02:00
handlers Remove excessive bindings for uWSGI 2024-08-08 20:53:28 +00:00
meta Fix linters and metadata 2023-07-14 20:44:53 +02:00
releasenotes Remove X-Forwarded-Proto header in apache 2024-06-20 13:06:57 -05:00
tasks Ensure correct order for credential rotate/migrate 2024-09-09 12:17:51 +00:00
templates Combine Ubuntu/Debian vars together 2024-07-22 11:32:09 +00:00
tests Adjust default configuration to support TLS v1.3 2022-01-10 13:49:45 +00:00
vars Do not install uWSGI as part of Keystone 2024-08-06 18:47:29 +00:00
zuul.d Test multiple keystone containers for os_keystone tests 2023-02-01 16:13:50 +00:00
.gitignore Updated from OpenStack Ansible Tests 2019-08-20 03:06:13 +00:00
.gitreview OpenDev Migration Patch 2019-04-19 19:36:31 +00:00
bindep.txt Updated from OpenStack Ansible Tests 2021-03-12 22:19:24 +00:00
CONTRIBUTING.rst [ussuri][goal] Update contributor documentation 2020-05-12 22:08:10 +03:00
LICENSE Updated role to be an independent role 2016-02-26 14:13:43 -06:00
manual-test.rc Use centralised test scripts 2016-09-28 08:56:33 +01:00
README.rst Replace git.openstack.org with opendev.org 2019-05-24 17:12:37 +00:00
run_tests.sh Updated from OpenStack Ansible Tests 2022-04-04 09:18:53 +00:00
tox.ini Cleanup setup.py config 2022-04-04 10:18:11 +01:00
Vagrantfile Updated from OpenStack Ansible Tests 2021-12-17 16:46:23 +00:00

README.rst

Team and repository tags

image

OpenStack-Ansible keystone

Ansible role that installs and configures OpenStack Keystone. Keystone is installed behind the Apache webserver listening on port 5000 by default.

Documentation for the project can be found at: https://docs.openstack.org/openstack-ansible-os_keystone/latest/

Release notes for the project can be found at: https://docs.openstack.org/releasenotes/openstack-ansible-os_keystone/

The project source code repository is located at: https://opendev.org/openstack/openstack-ansible-os_keystone/

The project home is at: https://launchpad.net/openstack-ansible

The project bug tracker is located at: https://bugs.launchpad.net/openstack-ansible