0f826646c6
... instead of undef, so that the parameters are cleared. Change-Id: Ia3eb890e787648623ce60c7fe07cbc7ebd2b85a8
29 lines
850 B
Puppet
29 lines
850 B
Puppet
# == Class: keystone::federation
|
|
#
|
|
# == Parameters
|
|
#
|
|
# [*trusted_dashboards*]
|
|
# (Optional) URL list of trusted horizon servers.
|
|
# This setting ensures that keystone only sends token data back to trusted
|
|
# servers. This is performed as a precaution, specifically to prevent man-in-
|
|
# the-middle (MITM) attacks.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*remote_id_attribute*]
|
|
# (Optional) Value to be used to obtain the entity ID of the Identity
|
|
# Provider from the environment.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
class keystone::federation (
|
|
$trusted_dashboards = $::os_service_default,
|
|
$remote_id_attribute = $::os_service_default,
|
|
) {
|
|
|
|
include keystone::deps
|
|
|
|
keystone_config {
|
|
'federation/trusted_dashboard': value => $trusted_dashboards;
|
|
'federation/remote_id_attribute': value => $remote_id_attribute;
|
|
}
|
|
}
|