Browse Source

Service_token_roles_required missing in the server config file

Service_token_roles_required missing in the server config file which
allows backwards compatibility to ensure that the service tokens are
compared against a list of possible roles for validity.

Change-Id: Ib26a4888425fe5dbaf4beca9ef0b7a2dad887551
Implements: bug service_token_roles_required missing
Closes-Bug: 1778198
Iago Santos Pardo 11 months ago
parent
commit
38285dc879

+ 8
- 0
manifests/keystone/authtoken.pp View File

@@ -178,6 +178,12 @@
178 178
 #   (in seconds). Set to -1 to disable caching completely. Integer value
179 179
 #   Defaults to $::os_service_default.
180 180
 #
181
+# [*service_token_roles_required*]
182
+#   (optional) backwards compatibility to ensure that the service tokens are
183
+#   compared against a list of possible roles for validity
184
+#   true/false
185
+#   Defaults to $::os_service_default.
186
+#
181 187
 # DEPRECATED PARAMETERS
182 188
 #
183 189
 # [*auth_uri*]
@@ -219,6 +225,7 @@ class neutron::keystone::authtoken(
219 225
   $manage_memcache_package        = false,
220 226
   $region_name                    = $::os_service_default,
221 227
   $token_cache_time               = $::os_service_default,
228
+  $service_token_roles_required   = $::os_service_default,
222 229
   # DEPRECATED PARAMETERS
223 230
   $auth_uri                       = undef,
224 231
 ) {
@@ -269,5 +276,6 @@ class neutron::keystone::authtoken(
269 276
     manage_memcache_package        => $manage_memcache_package,
270 277
     region_name                    => $region_name,
271 278
     token_cache_time               => $token_cache_time,
279
+    service_token_roles_required   => $service_token_roles_required,
272 280
   }
273 281
 }

+ 5
- 0
releasenotes/notes/service_token_roles_required-c07f2c2e0ed118c3.yaml View File

@@ -0,0 +1,5 @@
1
+---
2
+features:
3
+  - Service_token_roles_required missing in the server config file which
4
+    allows backwards compatibility to ensure that the service tokens are
5
+    compared against a list of possible roles for validity.

+ 3
- 0
spec/classes/neutron_keystone_authtoken_spec.rb View File

@@ -44,6 +44,7 @@ describe 'neutron::keystone::authtoken' do
44 44
         is_expected.to contain_neutron_config('keystone_authtoken/memcached_servers').with_value('<SERVICE DEFAULT>')
45 45
         is_expected.to contain_neutron_config('keystone_authtoken/region_name').with_value('<SERVICE DEFAULT>')
46 46
         is_expected.to contain_neutron_config('keystone_authtoken/token_cache_time').with_value('<SERVICE DEFAULT>')
47
+        is_expected.to contain_neutron_config('keystone_authtoken/service_token_roles_required').with_value('<SERVICE DEFAULT>')
47 48
       end
48 49
     end
49 50
 
@@ -84,6 +85,7 @@ describe 'neutron::keystone::authtoken' do
84 85
           :manage_memcache_package              => true,
85 86
           :region_name                          => 'region2',
86 87
           :token_cache_time                     => '301',
88
+          :service_token_roles_required         => false,
87 89
         })
88 90
       end
89 91
 
@@ -121,6 +123,7 @@ describe 'neutron::keystone::authtoken' do
121 123
         is_expected.to contain_neutron_config('keystone_authtoken/memcached_servers').with_value('memcached01:11211,memcached02:11211')
122 124
         is_expected.to contain_neutron_config('keystone_authtoken/region_name').with_value(params[:region_name])
123 125
         is_expected.to contain_neutron_config('keystone_authtoken/token_cache_time').with_value(params[:token_cache_time])
126
+        is_expected.to contain_neutron_config('keystone_authtoken/service_token_roles_required').with_value(params[:service_token_roles_required])
124 127
       end
125 128
 
126 129
       it 'installs python memcache package' do

Loading…
Cancel
Save