25 lines
1.1 KiB
ReStructuredText
25 lines
1.1 KiB
ReStructuredText
..
|
|
Warning: Do not edit this file. It is automatically generated from the
|
|
software project's code and your changes will be overwritten.
|
|
|
|
The tool to generate this file lives in openstack-doc-tools repository.
|
|
|
|
Please make any changes needed in the code, then run the
|
|
autogenerate-config-doc tool from the openstack-doc-tools repository, or
|
|
ask for help on the documentation mailing list, IRC channel or meeting.
|
|
|
|
.. _keystone-fernet_tokens:
|
|
|
|
.. list-table:: Description of Fernet tokens configuration options
|
|
:header-rows: 1
|
|
:class: config-ref-table
|
|
|
|
* - Configuration option = Default value
|
|
- Description
|
|
* - **[fernet_tokens]**
|
|
-
|
|
* - ``key_repository`` = ``/etc/keystone/fernet-keys/``
|
|
- (StrOpt) Directory containing Fernet token keys.
|
|
* - ``max_active_keys`` = ``3``
|
|
- (IntOpt) This controls how many keys are held in rotation by keystone-manage fernet_rotate before they are discarded. The default value of 3 means that keystone will maintain one staged key, one primary key, and one secondary key. Increasing this value means that additional secondary keys will be kept in the rotation.
|