Ensure endpoints created before admin_token_auth

This commit will establish that all endpoints are created before the
  admin_token_auth is removed from the authentication pipeline.

  Without this you can no guarantee that all required endpoints are
  bootstrapped properly on initial puppet run.

Change-Id: I43b4ca8d623c2447e722fd521a5375f828858802

manifests/disable_admin_token_auth.pp

@@ -11,6 +11,9 @@
 # valid keystone v3 credentials set as environment variables.
 #
 class keystone::disable_admin_token_auth {
+
+  Keystone::Resource::Service_identity<||> -> Class['::keystone::disable_admin_token_auth']
+
   Ini_subsetting {
     require => Class['keystone::roles::admin'],
   }