openstack/puppet-keystone
Code Issues Proposed changes
Files
c55a4618bd1c20f3094b063fdb61f2777dccc63d
puppet-keystone/releasenotes/notes
History
Emilien Macchi 17675623f3 Allow to manage credential files contents 
Running keystone-manage credential_setup has not been designed for
multinode environment.

Keystone team suggests to run this command on one node, to export the
keys and collect them on every Keystone server.

Most of people don't have this mechanism when deploying OpenStack.

This patch aims to allow to use puppet-keystone to manage credential
files using Puppet file resource. All credentials would be defined in a
hash where file path and content is defined.

Here is an example:
   credential_keys:
     /etc/keystone/credential-keys/0:
       content: t-WdduhORSqoyAykuqWAQSYjg2rSRuJYySgI2xh48CI=
     /etc/keystone/credential-keys/1:
       content: GLlnyygEVJP4-H2OMwClXn3sdSQUZsM5F194139Unv8=

To enable this feature, you'll need to set enable_credential_setup to
True and configure credential_keys with a valid hash.

Change-Id: Ic335ea201b58c99e9fd8a0a2c0865b461ff8f672
2016-09-06 19:24:53 -04:00
..
add_target_admin_domain-272f97b06e476495.yaml
Add association of the admin user to a domain.
2016-06-23 07:56:59 +00:00
Add-cert-and-key-files-specifically-for-the-admin-endpoint-815e0109247d6f70.yaml
Allow different key/cert for the admin apache vhost
2016-09-01 14:26:33 +03:00
Add-servername-for-admin-endpoint-vhost-c62a86939e5b9e49.yaml
Enable different servername for admin vhost
2016-09-05 13:42:23 +03:00
authtoken-os_service_default-eb8809222b21e05a.yaml
Move Authtoken to $::os_service_default
2016-06-20 13:34:35 +00:00
changes_around_keystone_manage_commands-5bbf256bb24c0a81.yaml
Changes around keystone-manage commands
2016-07-21 19:49:06 +03:00
deprecate_pki_signing-ae35fe25182735ab.yaml
Deprecate PKI signing related parameter
2016-05-19 20:47:05 +08:00
deprecated_ldap-02957eb56827ead5.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
deprecated_uuid_default_token-33090f377b0086b7.yaml
Add a warning to use Fernet as token
2016-07-12 06:59:50 +00:00
disable_admin_token_auth-b82d0aca80d1f091.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
drop_qpid-50eb89c1bec84504.yaml
Totally drop Qpid support
2016-04-18 13:59:24 +03:00
ensure_parameter_service_identity_resource-610076e4902c23ec.yaml
Add ensure parameter to service identity resource
2016-07-15 08:21:45 -04:00
federation_with_mellon-2f8229c1464b2e0e.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
fix_admin-fee6e76089c07a42.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
fix_endpoint_region-0fa0d89061ebaf12.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
fix_endpoint_update_when_missing-4cd73e06a8ac30f7.yaml
Fix endpoint update when one endpoint is missing.
2016-06-23 18:44:24 +02:00
fix_openrc_v2-64049769daf57b65.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
fix_retry_for_keystone_user_exists-53987cf3bfac4f6e.yaml
Add retry to keystone_user.exists?
2016-06-30 19:27:41 +02:00
fix-cache-configs-a3972486723f1d99.yaml
Add release note for Bug #1523393
2016-01-28 16:23:28 -05:00
fix-wsgi-params-366be2d75d6792c8.yaml
Make admin and public scripts configurable
2016-07-06 12:13:37 -06:00
hash_domains-d6a867466bcf324b.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
ipv6_provider-796b60badd356e59.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
keystone_bootstrap-4bf00198001d3350.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
keystone_cors-00694edf25d53324.yaml
Add CORS settings
2016-08-11 15:37:05 -04:00
keystone_hooks_support-2c9e8b09bdbd1b5b.yaml
Release notes for Keystone external deps
2016-03-16 13:43:06 -06:00
keystone_identity_provider-9b6f6b3ad70c60f3.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
keystone_python_depr-80fa804d9cd242c5.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
keystone-credential-setup-0971292cf1b0bde7.yaml
Allow to manage credential files contents
2016-09-06 19:24:53 -04:00
keystone-wsgi-scripts-0d772d1f9f2d6c57.yaml
Update keystone wsgi scripts
2016-05-24 09:29:38 -06:00
ldap_backend_domain-37839afb8b1d26e4.yaml
Add release note for https://review.openstack.org/298672
2016-03-30 10:20:05 -04:00
manage_ldap_packages-3b739e338f3e59c2.yaml
Add the ability to control LDAP package mgmt
2016-03-23 08:36:32 -06:00
multi_domain_configuration-32dc8cbef450f1d6.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
multi_ldap-975858a46dd622a6.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
os_service_default-9caeeb340d4bb303.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
policy_driver-c991dd693d2336fc.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
policy_rc_d_keystone_eventlet-2dc65eb3d27f8969.yaml
Prevent keystone eventlet from starting
2016-04-22 14:15:07 -04:00
remove_unused_class-0615d6744896ad97.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
service_provider_deprecation-50421064c823f3ee.yaml
Deprecate service_provider
2016-04-21 21:56:31 -04:00
stop_posix_and_files-930ee921d0ebead2.yaml
Prepare release notes for Mitaka 8.0.0
2016-03-11 11:10:18 -05:00
support_multi_domain-bd04f18aa7913eaa.yaml
Remove user/role prefetch to support multi-domain.
2016-04-14 11:37:43 +02:00
switch_to_oslo-b7caf6d5906e29dc.yaml
Set oslo options in keystone module through puppet-oslo
2016-04-13 17:32:49 +03:00
uca_newton-434b3f07a06be290.yaml
manage_policyrcd: stop eventlet support from Newton
2016-06-16 18:58:40 -04:00
update_authtoken-c3b672875f4c5b50.yaml
Add misssing parameters to keystone_authtoken
2016-07-05 00:09:04 -03:00
use-reno-1caaec4ba5aa4285.yaml
Release 8.0.0
2016-03-23 17:08:06 -04:00
verbose-deprecation-38d9b7667fcf381d.yaml
Deprecate verbose option in logging
2016-05-16 11:23:13 -03:00