[config-ref] cleanup keystone authtoken configurations
Change-Id: Ia96c13652ea2d5c1f64caa7b2068cffc57e637ba Implements: blueprint config-ref-common-sections
This commit is contained in:
KATO Tomoyuki
parent
ab799d640e
commit
637aff3cdc
@ -8,7 +8,6 @@ service configuration options.
|
||||
.. include:: ../tables/ironic-agent.rst
|
||||
.. include:: ../tables/ironic-amqp.rst
|
||||
.. include:: ../tables/ironic-amt.rst
|
||||
.. include:: ../tables/ironic-auth_token.rst
|
||||
.. include:: ../tables/ironic-auth.rst
|
||||
.. include:: ../tables/ironic-cisco_ucs.rst
|
||||
.. include:: ../tables/ironic-common.rst
|
||||
|
||||
@ -7,7 +7,6 @@ These options can also be set in the ``cinder.conf`` file.
|
||||
.. include:: ../tables/cinder-api.rst
|
||||
.. include:: ../tables/cinder-amqp.rst
|
||||
.. include:: ../tables/cinder-auth.rst
|
||||
.. include:: ../tables/cinder-auth_token.rst
|
||||
.. include:: ../tables/cinder-backups.rst
|
||||
.. include:: ../tables/cinder-block-device.rst
|
||||
.. include:: ../tables/cinder-common.rst
|
||||
|
||||
@ -10,7 +10,6 @@ OpenStack Compute service, run
|
||||
.. include:: ../tables/nova-apiv21.rst
|
||||
.. include:: ../tables/nova-api_database.rst
|
||||
.. include:: ../tables/nova-authentication.rst
|
||||
.. include:: ../tables/nova-auth_token.rst
|
||||
.. include:: ../tables/nova-availabilityzones.rst
|
||||
.. include:: ../tables/nova-barbican.rst
|
||||
.. include:: ../tables/nova-ca.rst
|
||||
|
||||
@ -20,7 +20,6 @@ service configuration options:
|
||||
|
||||
.. include:: tables/sahara-amqp.rst
|
||||
.. include:: tables/sahara-api.rst
|
||||
.. include:: tables/sahara-auth_token.rst
|
||||
.. include:: tables/sahara-clients.rst
|
||||
.. include:: tables/sahara-common.rst
|
||||
.. include:: tables/sahara-domain.rst
|
||||
|
||||
@ -17,7 +17,6 @@ The following tables provide a comprehensive list of the Database service
|
||||
configuration options.
|
||||
|
||||
.. include:: tables/trove-api.rst
|
||||
.. include:: tables/trove-auth_token.rst
|
||||
.. include:: tables/trove-backup.rst
|
||||
.. include:: tables/trove-clients.rst
|
||||
.. include:: tables/trove-cluster.rst
|
||||
|
||||
@ -10,7 +10,6 @@ service options.
|
||||
.. include:: ../tables/keystone-api.rst
|
||||
.. include:: ../tables/keystone-assignment.rst
|
||||
.. include:: ../tables/keystone-auth.rst
|
||||
.. include:: ../tables/keystone-auth_token.rst
|
||||
.. include:: ../tables/keystone-ca.rst
|
||||
.. include:: ../tables/keystone-catalog.rst
|
||||
.. include:: ../tables/keystone-common.rst
|
||||
|
||||
@ -28,7 +28,6 @@ documented in :ref:`nova-glance`.
|
||||
You can modify many options in the Image service. The following tables provide
|
||||
a comprehensive list.
|
||||
|
||||
.. include:: tables/glance-auth_token.rst
|
||||
.. include:: tables/glance-common.rst
|
||||
.. include:: tables/glance-imagecache.rst
|
||||
.. include:: tables/glance-logging.rst
|
||||
|
||||
@ -39,4 +39,3 @@ Options
|
||||
Configure the authentication and authorization strategy through these options:
|
||||
|
||||
.. include:: ../tables/zaqar-authentication.rst
|
||||
.. include:: ../tables/zaqar-auth_token.rst
|
||||
|
||||
@ -165,14 +165,6 @@ Use the following options to alter API-related settings.
|
||||
|
||||
.. include:: ../tables/neutron-api.rst
|
||||
|
||||
Token authentication
|
||||
~~~~~~~~~~~~~~~~~~~~
|
||||
|
||||
Use the following options to alter token authentication settings.
|
||||
|
||||
.. include:: ../tables/neutron-auth_token.rst
|
||||
|
||||
|
||||
Compute
|
||||
~~~~~~~
|
||||
|
||||
|
||||
@ -27,7 +27,6 @@ distribution (`docs.openstack.org <http://docs.openstack.org>`__).
|
||||
The following tables provide a comprehensive list of the Orchestration
|
||||
configuration options:
|
||||
|
||||
.. include:: tables/heat-auth_token.rst
|
||||
.. include:: tables/heat-common.rst
|
||||
.. include:: tables/heat-crypt.rst
|
||||
.. include:: tables/heat-loadbalancer.rst
|
||||
|
||||
@ -4,7 +4,6 @@ Additional options
|
||||
|
||||
These options can also be set in the ``manila.conf`` file.
|
||||
|
||||
.. include:: ../tables/manila-auth_token.rst
|
||||
.. include:: ../tables/manila-auth.rst
|
||||
.. include:: ../tables/manila-ca.rst
|
||||
.. include:: ../tables/manila-common.rst
|
||||
|
||||
@ -1,96 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _aodh-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _ceilometer-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -66,10 +66,6 @@
|
||||
- (Integer) Maximum number of seconds between retry to join partitioning group
|
||||
* - ``retry_backoff`` = ``1``
|
||||
- (Integer) Retry backoff factor when retrying to connect withcoordination backend
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[meter]**
|
||||
-
|
||||
* - ``meter_definitions_cfg_file`` = ``meters.yaml``
|
||||
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _cinder-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -128,7 +128,3 @@
|
||||
- (Boolean) Treat X-Forwarded-For as the canonical remote address. Only enable this if you have a sanitizing proxy.
|
||||
* - ``watch_log_file`` = ``False``
|
||||
- (Boolean) Uses logging handler designed to watch file system. When log file is moved or removed this handler will open a new log file with specified path instantaneously. It makes sense only if log_file option is specified and Linux platform is used. This option is ignored if log_config_append is set.
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
|
||||
@ -84,6 +84,8 @@
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _glance-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -70,10 +70,6 @@
|
||||
- (List) Supported values for the 'container_format' image attribute
|
||||
* - ``disk_formats`` = ``ami, ari, aki, vhd, vmdk, raw, qcow2, vdi, iso``
|
||||
- (List) Supported values for the 'disk_format' image attribute
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[task]**
|
||||
-
|
||||
* - ``task_executor`` = ``taskflow``
|
||||
|
||||
@ -1,96 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _heat-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -1,96 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _ironic-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _keystone-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -22,10 +22,6 @@
|
||||
- (Integer) Size of executor thread pool.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Memcached servers or None for in process cache.
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[oslo_concurrency]**
|
||||
-
|
||||
* - ``disable_process_locking`` = ``False``
|
||||
|
||||
@ -1,96 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _manila-auth_token:
|
||||
|
||||
.. list-table:: Description of Authorization Token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _neutron-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -118,10 +118,6 @@
|
||||
- (String) Root helper application. Use 'sudo neutron-rootwrap /etc/neutron/rootwrap.conf' to use the real root filter facility. Change to 'sudo' to skip the filtering and just run the command directly.
|
||||
* - ``root_helper_daemon`` = ``None``
|
||||
- (String) Root helper daemon application to use when possible.
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[qos]**
|
||||
-
|
||||
* - ``notification_drivers`` = ``message_queue``
|
||||
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _nova-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -52,10 +52,6 @@
|
||||
- (String) Explicitly specify the temporary working directory
|
||||
* - ``use_rootwrap_daemon`` = ``False``
|
||||
- (Boolean) Start and use a daemon that can run the commands that need to be run with root privileges. This option is usually enabled on nodes that run nova compute processes
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[workarounds]**
|
||||
-
|
||||
* - ``destroy_after_evacuate`` = ``True``
|
||||
|
||||
@ -16,84 +16,6 @@
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
* - **[keystone_authtoken_v3]**
|
||||
-
|
||||
* - ``admin_project_domain`` = ``default``
|
||||
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _sahara-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -120,7 +120,3 @@
|
||||
-
|
||||
* - ``use_local`` = ``True``
|
||||
- (Boolean) Perform sahara-conductor operations locally.
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
|
||||
@ -1,94 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _trove-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -64,10 +64,6 @@
|
||||
- (String) Name of the Barbican authentication method to use
|
||||
* - ``cert_manager_type`` = ``barbican``
|
||||
- (String) Certificate Manager plugin. Defaults to barbican.
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - **[service_auth]**
|
||||
-
|
||||
* - ``admin_password`` = ``password``
|
||||
|
||||
@ -1,96 +0,0 @@
|
||||
..
|
||||
Warning: Do not edit this file. It is automatically generated from the
|
||||
software project's code and your changes will be overwritten.
|
||||
|
||||
The tool to generate this file lives in openstack-doc-tools repository.
|
||||
|
||||
Please make any changes needed in the code, then run the
|
||||
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
||||
ask for help on the documentation mailing list, IRC channel or meeting.
|
||||
|
||||
.. _zaqar-auth_token:
|
||||
|
||||
.. list-table:: Description of authorization token configuration options
|
||||
:header-rows: 1
|
||||
:class: config-ref-table
|
||||
|
||||
* - Configuration option = Default value
|
||||
- Description
|
||||
* - **[keystone_authtoken]**
|
||||
-
|
||||
* - ``admin_password`` = ``None``
|
||||
- (String) Service user password.
|
||||
* - ``admin_tenant_name`` = ``admin``
|
||||
- (String) Service tenant name.
|
||||
* - ``admin_token`` = ``None``
|
||||
- (String) This option is deprecated and may be removed in a future release. Single shared secret with the Keystone configuration used for bootstrapping a Keystone installation, or otherwise bypassing the normal authentication process. This option should not be used, use `admin_user` and `admin_password` instead.
|
||||
* - ``admin_user`` = ``None``
|
||||
- (String) Service username.
|
||||
* - ``auth_admin_prefix`` =
|
||||
- (String) Prefix to prepend at the beginning of the path. Deprecated, use identity_uri.
|
||||
* - ``auth_host`` = ``127.0.0.1``
|
||||
- (String) Host providing the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_port`` = ``35357``
|
||||
- (Integer) Port of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_protocol`` = ``https``
|
||||
- (String) Protocol of the admin Identity API endpoint. Deprecated, use identity_uri.
|
||||
* - ``auth_section`` = ``None``
|
||||
- (Unknown) Config Section from which to load plugin specific options
|
||||
* - ``auth_type`` = ``None``
|
||||
- (Unknown) Authentication type to load
|
||||
* - ``auth_uri`` = ``None``
|
||||
- (String) Complete public Identity API endpoint.
|
||||
* - ``auth_version`` = ``None``
|
||||
- (String) API version of the admin Identity API endpoint.
|
||||
* - ``cache`` = ``None``
|
||||
- (String) Env key for the swift cache.
|
||||
* - ``cafile`` = ``None``
|
||||
- (String) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to system CAs.
|
||||
* - ``certfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``check_revocations_for_cached`` = ``False``
|
||||
- (Boolean) If true, the revocation list will be checked for cached tokens. This requires that PKI tokens are configured on the identity server.
|
||||
* - ``delay_auth_decision`` = ``False``
|
||||
- (Boolean) Do not handle authorization requests within the middleware, but delegate the authorization decision to downstream WSGI components.
|
||||
* - ``enforce_token_bind`` = ``permissive``
|
||||
- (String) Used to control the use and type of token binding. Can be set to: "disabled" to not check token binding. "permissive" (default) to validate binding information if the bind type is of a form known to the server and ignore it if not. "strict" like "permissive" but if the bind type is unknown the token will be rejected. "required" any form of token binding is needed to be allowed. Finally the name of a binding method that must be present in tokens.
|
||||
* - ``hash_algorithms`` = ``md5``
|
||||
- (List) Hash algorithms to use for hashing PKI tokens. This may be a single algorithm or multiple. The algorithms are those supported by Python standard hashlib.new(). The hashes will be tried in the order given, so put the preferred one first for performance. The result of the first hash will be stored in the cache. This will typically be set to multiple values only while migrating from a less secure algorithm to a more secure one. Once all the old tokens are expired this option should be set to a single value for better performance.
|
||||
* - ``http_connect_timeout`` = ``None``
|
||||
- (Integer) Request timeout value for communicating with Identity API server.
|
||||
* - ``http_request_max_retries`` = ``3``
|
||||
- (Integer) How many times are we trying to reconnect when communicating with Identity API Server.
|
||||
* - ``identity_uri`` = ``None``
|
||||
- (String) Complete admin Identity API endpoint. This should specify the unversioned root endpoint e.g. https://localhost:35357/
|
||||
* - ``include_service_catalog`` = ``True``
|
||||
- (Boolean) (Optional) Indicate whether to set the X-Service-Catalog header. If False, middleware will not ask for service catalog on token validation and will not set the X-Service-Catalog header.
|
||||
* - ``insecure`` = ``False``
|
||||
- (Boolean) Verify HTTPS connections.
|
||||
* - ``keyfile`` = ``None``
|
||||
- (String) Required if identity server requires client certificate
|
||||
* - ``memcache_pool_conn_get_timeout`` = ``10``
|
||||
- (Integer) (Optional) Number of seconds that an operation will wait to get a memcached client connection from the pool.
|
||||
* - ``memcache_pool_dead_retry`` = ``300``
|
||||
- (Integer) (Optional) Number of seconds memcached server is considered dead before it is tried again.
|
||||
* - ``memcache_pool_maxsize`` = ``10``
|
||||
- (Integer) (Optional) Maximum total number of open connections to every memcached server.
|
||||
* - ``memcache_pool_socket_timeout`` = ``3``
|
||||
- (Integer) (Optional) Socket timeout in seconds for communicating with a memcached server.
|
||||
* - ``memcache_pool_unused_timeout`` = ``60``
|
||||
- (Integer) (Optional) Number of seconds a connection to memcached is held unused in the pool before it is closed.
|
||||
* - ``memcache_secret_key`` = ``None``
|
||||
- (String) (Optional, mandatory if memcache_security_strategy is defined) This string is used for key derivation.
|
||||
* - ``memcache_security_strategy`` = ``None``
|
||||
- (String) (Optional) If defined, indicate whether token data should be authenticated or authenticated and encrypted. If MAC, token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data is encrypted and authenticated in the cache. If the value is not one of these options or empty, auth_token will raise an exception on initialization.
|
||||
* - ``memcache_use_advanced_pool`` = ``False``
|
||||
- (Boolean) (Optional) Use the advanced (eventlet safe) memcached client pool. The advanced pool will only work under python 2.x.
|
||||
* - ``memcached_servers`` = ``None``
|
||||
- (List) Optionally specify a list of memcached server(s) to use for caching. If left undefined, tokens will instead be cached in-process.
|
||||
* - ``region_name`` = ``None``
|
||||
- (String) The region in which the identity server can be found.
|
||||
* - ``revocation_cache_time`` = ``10``
|
||||
- (Integer) Determines the frequency at which the list of revoked tokens is retrieved from the Identity service (in seconds). A high number of revocation events combined with a low cache duration may significantly reduce performance.
|
||||
* - ``signing_dir`` = ``None``
|
||||
- (String) Directory used to cache files related to PKI tokens.
|
||||
* - ``token_cache_time`` = ``300``
|
||||
- (Integer) In order to prevent excessive effort spent validating tokens, the middleware caches previously-seen tokens for a configurable duration (in seconds). Set to -1 to disable caching completely.
|
||||
@ -7,7 +7,6 @@ Alarming service configuration options.
|
||||
|
||||
.. include:: ../tables/aodh-amqp.rst
|
||||
.. include:: ../tables/aodh-api.rst
|
||||
.. include:: ../tables/aodh-auth_token.rst
|
||||
.. include:: ../tables/aodh-common.rst
|
||||
.. include:: ../tables/aodh-coordination.rst
|
||||
.. include:: ../tables/aodh-logging.rst
|
||||
|
||||
@ -8,7 +8,6 @@ configuration options.
|
||||
.. include:: ../tables/ceilometer-amqp.rst
|
||||
.. include:: ../tables/ceilometer-api.rst
|
||||
.. include:: ../tables/ceilometer-auth.rst
|
||||
.. include:: ../tables/ceilometer-auth_token.rst
|
||||
.. include:: ../tables/ceilometer-collector.rst
|
||||
.. include:: ../tables/ceilometer-common.rst
|
||||
.. include:: ../tables/ceilometer-debug.rst
|
||||
|
||||
@ -94,44 +94,44 @@ database/slave_connection disable
|
||||
database/sqlite_db disable
|
||||
database/sqlite_synchronous disable
|
||||
database/use_db_reconnect disable
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -158,44 +158,44 @@ hardware/url_scheme tripleo
|
||||
hyperv/force_volumeutils_v1 hyperv
|
||||
ipmi/node_manager_init_retry ipmi
|
||||
ipmi/polling_retry ipmi
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -744,44 +744,44 @@ keymgr/api_class keymgr
|
||||
keymgr/encryption_api_url keymgr
|
||||
keymgr/encryption_auth_url keymgr
|
||||
keymgr/fixed_key keymgr
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -234,44 +234,44 @@ glance_store/vmware_store_image_dir vmware
|
||||
glance_store/vmware_task_poll_interval vmware
|
||||
image_format/container_formats common
|
||||
image_format/disk_formats common
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -230,44 +230,44 @@ heat_api_cloudwatch/key_file cloudwatch_api
|
||||
heat_api_cloudwatch/max_header_line cloudwatch_api
|
||||
heat_api_cloudwatch/tcp_keepidle cloudwatch_api
|
||||
heat_api_cloudwatch/workers cloudwatch_api
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -211,44 +211,44 @@ irmc/snmp_version irmc
|
||||
ironic_lib/fatal_exception_format_errors common
|
||||
ironic_lib/root_helper common
|
||||
keystone/region_name keystone
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -160,44 +160,44 @@ identity/max_password_length identity
|
||||
identity_mapping/backward_compatible_ids mapping
|
||||
identity_mapping/driver mapping
|
||||
identity_mapping/generator mapping
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
kvs/backends kvs
|
||||
kvs/config_prefix kvs
|
||||
kvs/default_lock_timeout kvs
|
||||
|
||||
@ -381,44 +381,44 @@ hnas1/hds_hnas_stalled_job_timeout hds_hnas
|
||||
hnas1/hds_hnas_user hds_hnas
|
||||
hnas1/share_backend_name hds_hnas
|
||||
hnas1/share_driver hds_hnas
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
matchmaker_redis/check_timeout redis
|
||||
matchmaker_redis/host redis
|
||||
matchmaker_redis/password redis
|
||||
|
||||
@ -307,44 +307,44 @@ haproxy/user_group lbaas_agent
|
||||
ipsec/config_base_dir vpnaas_ipsec
|
||||
ipsec/enable_detailed_logging vpnaas_ipsec
|
||||
ipsec/ipsec_status_check_interval vpnaas_ipsec
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
l2pop/agent_boot_time ml2_l2pop
|
||||
macvtap/physical_interface_mappings ml2_macvtap
|
||||
matchmaker_redis/check_timeout redis
|
||||
|
||||
@ -486,44 +486,44 @@ ironic/cafile ironic
|
||||
ironic/client_log_level ironic
|
||||
keymgr/api_class keymgr
|
||||
keymgr/fixed_key keymgr
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
libvirt/block_migration_flag libvirt
|
||||
libvirt/checksum_base_images libvirt
|
||||
libvirt/checksum_interval_seconds libvirt
|
||||
|
||||
@ -163,44 +163,44 @@ keepalived_vrrp/vrrp_fail_count common
|
||||
keepalived_vrrp/vrrp_garp_refresh_count common
|
||||
keepalived_vrrp/vrrp_garp_refresh_interval common
|
||||
keepalived_vrrp/vrrp_success_count common
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
keystone_authtoken_v3/admin_project_domain auth_token
|
||||
keystone_authtoken_v3/admin_user_domain auth_token
|
||||
matchmaker_redis/check_timeout redis
|
||||
|
||||
@ -133,44 +133,44 @@ heat/endpoint_type clients
|
||||
keystone/api_insecure clients
|
||||
keystone/ca_file clients
|
||||
keystone/endpoint_type clients
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
manila/api_insecure clients
|
||||
manila/api_version clients
|
||||
manila/ca_file clients
|
||||
|
||||
@ -293,44 +293,44 @@ db2/root_on_create db_db2
|
||||
db2/tcp_ports db_db2
|
||||
db2/udp_ports db_db2
|
||||
db2/volume_support db_db2
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers common
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
mariadb/api_strategy db_mariadb
|
||||
mariadb/backup_incremental_strategy db_mariadb
|
||||
mariadb/backup_namespace db_mariadb
|
||||
|
||||
@ -77,44 +77,44 @@ drivers:transport:websocket/external_port websocket
|
||||
drivers:transport:websocket/port websocket
|
||||
drivers:transport:wsgi/bind wsgi
|
||||
drivers:transport:wsgi/port wsgi
|
||||
keystone_authtoken/admin_password auth_token
|
||||
keystone_authtoken/admin_tenant_name auth_token
|
||||
keystone_authtoken/admin_token auth_token
|
||||
keystone_authtoken/admin_user auth_token
|
||||
keystone_authtoken/auth_admin_prefix auth_token
|
||||
keystone_authtoken/auth_host auth_token
|
||||
keystone_authtoken/auth_port auth_token
|
||||
keystone_authtoken/auth_protocol auth_token
|
||||
keystone_authtoken/auth_section auth_token
|
||||
keystone_authtoken/auth_type auth_token
|
||||
keystone_authtoken/auth_uri auth_token
|
||||
keystone_authtoken/auth_version auth_token
|
||||
keystone_authtoken/cache auth_token
|
||||
keystone_authtoken/cafile auth_token
|
||||
keystone_authtoken/certfile auth_token
|
||||
keystone_authtoken/check_revocations_for_cached auth_token
|
||||
keystone_authtoken/delay_auth_decision auth_token
|
||||
keystone_authtoken/enforce_token_bind auth_token
|
||||
keystone_authtoken/hash_algorithms auth_token
|
||||
keystone_authtoken/http_connect_timeout auth_token
|
||||
keystone_authtoken/http_request_max_retries auth_token
|
||||
keystone_authtoken/identity_uri auth_token
|
||||
keystone_authtoken/include_service_catalog auth_token
|
||||
keystone_authtoken/insecure auth_token
|
||||
keystone_authtoken/keyfile auth_token
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_dead_retry auth_token
|
||||
keystone_authtoken/memcache_pool_maxsize auth_token
|
||||
keystone_authtoken/memcache_pool_socket_timeout auth_token
|
||||
keystone_authtoken/memcache_pool_unused_timeout auth_token
|
||||
keystone_authtoken/memcache_secret_key auth_token
|
||||
keystone_authtoken/memcache_security_strategy auth_token
|
||||
keystone_authtoken/memcache_use_advanced_pool auth_token
|
||||
keystone_authtoken/memcached_servers auth_token
|
||||
keystone_authtoken/region_name auth_token
|
||||
keystone_authtoken/revocation_cache_time auth_token
|
||||
keystone_authtoken/signing_dir auth_token
|
||||
keystone_authtoken/token_cache_time auth_token
|
||||
keystone_authtoken/admin_password disable
|
||||
keystone_authtoken/admin_tenant_name disable
|
||||
keystone_authtoken/admin_token disable
|
||||
keystone_authtoken/admin_user disable
|
||||
keystone_authtoken/auth_admin_prefix disable
|
||||
keystone_authtoken/auth_host disable
|
||||
keystone_authtoken/auth_port disable
|
||||
keystone_authtoken/auth_protocol disable
|
||||
keystone_authtoken/auth_section disable
|
||||
keystone_authtoken/auth_type disable
|
||||
keystone_authtoken/auth_uri disable
|
||||
keystone_authtoken/auth_version disable
|
||||
keystone_authtoken/cache disable
|
||||
keystone_authtoken/cafile disable
|
||||
keystone_authtoken/certfile disable
|
||||
keystone_authtoken/check_revocations_for_cached disable
|
||||
keystone_authtoken/delay_auth_decision disable
|
||||
keystone_authtoken/enforce_token_bind disable
|
||||
keystone_authtoken/hash_algorithms disable
|
||||
keystone_authtoken/http_connect_timeout disable
|
||||
keystone_authtoken/http_request_max_retries disable
|
||||
keystone_authtoken/identity_uri disable
|
||||
keystone_authtoken/include_service_catalog disable
|
||||
keystone_authtoken/insecure disable
|
||||
keystone_authtoken/keyfile disable
|
||||
keystone_authtoken/memcache_pool_conn_get_timeout disable
|
||||
keystone_authtoken/memcache_pool_dead_retry disable
|
||||
keystone_authtoken/memcache_pool_maxsize disable
|
||||
keystone_authtoken/memcache_pool_socket_timeout disable
|
||||
keystone_authtoken/memcache_pool_unused_timeout disable
|
||||
keystone_authtoken/memcache_secret_key disable
|
||||
keystone_authtoken/memcache_security_strategy disable
|
||||
keystone_authtoken/memcache_use_advanced_pool disable
|
||||
keystone_authtoken/memcached_servers disable
|
||||
keystone_authtoken/region_name disable
|
||||
keystone_authtoken/revocation_cache_time disable
|
||||
keystone_authtoken/signing_dir disable
|
||||
keystone_authtoken/token_cache_time disable
|
||||
notification/smtp_command api
|
||||
oslo_policy/policy_default_rule disable
|
||||
oslo_policy/policy_dirs disable
|
||||
|
||||
Loading…
Reference in New Issue
Block a user