added value and notes to a sample config file for s3token

Change-Id: I18accffb2cf6ba6a3fff6fd5d95f06a424d1d919
2018-12-13 10:45:51 -08:00 · 2018-12-13 10:45:51 -08:00 · d358b9130d
parent 5cd854b783
commit d358b9130d
1 changed files with 11 additions and 0 deletions
--- a/etc/proxy-server.conf-sample
+++ b/etc/proxy-server.conf-sample
@ -598,6 +598,17 @@ auth_uri = http://keystonehost:5000/v3
 # Connect/read timeout to use when communicating with Keystone
 http_timeout = 10.0

+# Number of seconds to cache the S3 secret. By setting this to a positive
+# number, the S3 authorization validation checks can happen locally.
+# secret_cache_duration = 0
+
+# If S3 secret caching is enabled, Keystone auth credentials to be used to
+# validate S3 authorization must be provided here. The appropriate options
+# are the same as used in the authtoken middleware above. The values are
+# likely the same as used in the authtoken middleware.
+# Note that the Keystone auth credentials used by s3token will need to be
+# able to view all project credentials too.
+
 # SSL-related options
 # insecure = False
 # certfile =