openstack/puppet-keystone
Code Issues Proposed changes
aa58408795
puppet-keystone/manifests
History
Emilien Macchi 17675623f3 Allow to manage credential files contents 
Running keystone-manage credential_setup has not been designed for
multinode environment.

Keystone team suggests to run this command on one node, to export the
keys and collect them on every Keystone server.

Most of people don't have this mechanism when deploying OpenStack.

This patch aims to allow to use puppet-keystone to manage credential
files using Puppet file resource. All credentials would be defined in a
hash where file path and content is defined.

Here is an example:
   credential_keys:
     /etc/keystone/credential-keys/0:
       content: t-WdduhORSqoyAykuqWAQSYjg2rSRuJYySgI2xh48CI=
     /etc/keystone/credential-keys/1:
       content: GLlnyygEVJP4-H2OMwClXn3sdSQUZsM5F194139Unv8=

To enable this feature, you'll need to set enable_credential_setup to
True and configure credential_keys with a valid hash.

Change-Id: Ic335ea201b58c99e9fd8a0a2c0865b461ff8f672
2016-09-06 19:24:53 -04:00
..
cron Keystone hooks support 2016-03-15 20:11:25 -06:00
db Changes around keystone-manage commands 2016-07-21 19:49:06 +03:00
federation Added federation support for OpenID Connect with mod_auth_openidc 2016-07-05 20:27:43 +10:00
resource Merge "Add ensure parameter to service identity resource" 2016-07-15 23:05:57 +00:00
roles Merge "Add association of the admin user to a domain." 2016-06-23 18:30:49 +00:00
wsgi Enable different servername for admin vhost 2016-09-05 13:42:23 +03:00
client.pp Keystone hooks support 2016-03-15 20:11:25 -06:00
config.pp Keystone hooks support 2016-03-15 20:11:25 -06:00
cors.pp Add CORS settings 2016-08-11 15:37:05 -04:00
db.pp Add support for db_max_retries param 2016-05-09 13:26:17 +02:00
deps.pp Add oslo::db to dependency chain 2016-05-30 20:33:55 +03:00
disable_admin_token_auth.pp Ensure endpoints created before admin_token_auth 2016-03-28 11:56:18 -07:00
endpoint.pp Ensure keystone service is created before openrc 2016-03-18 16:34:45 -04:00
init.pp Allow to manage credential files contents 2016-09-06 19:24:53 -04:00
ldap_backend.pp domain backend drivers set in domain config 2016-03-29 08:55:10 -04:00
ldap.pp Add the ability to control LDAP package mgmt 2016-03-23 08:36:32 -06:00
logging.pp Revert "Deprecate use_syslog" 2016-05-31 13:42:38 +00:00
params.pp Include openstacklib defaults manifest. 2016-07-08 08:09:17 +00:00
policy.pp Set oslo options in keystone module through puppet-oslo 2016-04-13 17:32:49 +03:00
python.pp Deprecate python.pp and fix client tags 2016-02-29 18:32:57 +00:00
service.pp Deprecate service_provider 2016-04-21 21:56:31 -04:00