07428d4985
1. Add new option 'use_barbican' in config file [vim_keys] section, default value is False for Pike. 2. Use fernet to encrypt vim password, and save the fernet key into barbican as a secret. 3. Add new fields 'key_type', 'secret_uuid' into VimAuth.auth_cred json string. secret_uuid is masked in vim-show or vim-list response. 4. Set the vim's default 'shared' value to False, vim can only be used by who created it. 5. Add a devref to show how to test. 6. Add a release note. Implements: blueprint encryption-with-barbican Partial-bug: #1667652 Change-Id: I5c779041df5a08a361b9aaefac7d241369732551
28 lines
1015 B
Plaintext
28 lines
1015 B
Plaintext
[DEFAULT]
|
|
output_file = etc/tacker/tacker.conf.sample
|
|
wrap_width = 79
|
|
namespace = tacker.common.config
|
|
namespace = tacker.wsgi
|
|
namespace = tacker.service
|
|
namespace = tacker.nfvo.nfvo_plugin
|
|
namespace = tacker.nfvo.drivers.vim.openstack_driver
|
|
namespace = tacker.keymgr
|
|
namespace = tacker.vnfm.monitor
|
|
namespace = tacker.vnfm.plugin
|
|
namespace = tacker.vnfm.infra_drivers.openstack.openstack
|
|
namespace = tacker.vnfm.mgmt_drivers.openwrt.openwrt
|
|
namespace = tacker.vnfm.monitor_drivers.http_ping.http_ping
|
|
namespace = tacker.vnfm.monitor_drivers.ping.ping
|
|
namespace = tacker.vnfm.monitor_drivers.ceilometer.ceilometer
|
|
namespace = tacker.tacker.policy_actions.autoscaling.autoscaling
|
|
namespace = tacker.tacker.policy_actions.respawn.respawn
|
|
namespace = tacker.tacker.policy_actions.log.log
|
|
namespace = tacker.alarm_receiver
|
|
namespace = keystonemiddleware.auth_token
|
|
namespace = oslo.middleware
|
|
namespace = oslo.messaging
|
|
namespace = oslo.db
|
|
namespace = oslo.log
|
|
namespace = oslo.policy
|
|
namespace = oslo.service.service
|