Keystone: Keep default auth methods in OpenIDC Federation
The enable-federation-openidc.yaml environment file defines enabled auth methods but its current contents doesn't include all of the default items like application_credential. This change ensures that all default methods are still enabled when federation with OpenIDC is used. Closes-Bug: #1935811 Change-Id: I7e168dda4419953abb1002b3180c8f512b59d7f1
This commit is contained in:
Takashi Kajinami
parent
0b874947a1
commit
62b17c21b8
@ -12,7 +12,7 @@
|
|||||||
parameter_defaults:
|
parameter_defaults:
|
||||||
# A list of methods used for authentication.
|
# A list of methods used for authentication.
|
||||||
# Type: comma_delimited_list
|
# Type: comma_delimited_list
|
||||||
KeystoneAuthMethods: password,token,openid
|
KeystoneAuthMethods: external,password,token,oauth1,mapped,application_credential,openid
|
||||||
|
|
||||||
# The client ID to use when handshaking with your OpenID Connect provider
|
# The client ID to use when handshaking with your OpenID Connect provider
|
||||||
# Type: string
|
# Type: string
|
||||||
|
|||||||
@ -29,7 +29,7 @@ environments:
|
|||||||
KeystoneOpenIdcEnable: True
|
KeystoneOpenIdcEnable: True
|
||||||
KeystoneOpenIdcEnableOAuth: True
|
KeystoneOpenIdcEnableOAuth: True
|
||||||
WebSSOEnable: True
|
WebSSOEnable: True
|
||||||
KeystoneAuthMethods: 'password,token,openid'
|
KeystoneAuthMethods: external,password,token,oauth1,mapped,application_credential,openid
|
||||||
KeystoneTrustedDashboards: 'https://dashboard.example.test/dashboard/auth/websso/'
|
KeystoneTrustedDashboards: 'https://dashboard.example.test/dashboard/auth/websso/'
|
||||||
KeystoneOpenIdcIdpName: 'myidp'
|
KeystoneOpenIdcIdpName: 'myidp'
|
||||||
KeystoneOpenIdcProviderMetadataUrl: 'https://myidp.example.test/auth/realms/openstack/.well-known/openid-configuration'
|
KeystoneOpenIdcProviderMetadataUrl: 'https://myidp.example.test/auth/realms/openstack/.well-known/openid-configuration'
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user