Add optional admin_* keys to keystone interface

The keystone charm may provide ID information about the admin user, project and domain. These are used to build trusts between service accounts and the main cloud admin account to allow priviledge escalation for cloud applications (such as backups). Change-Id: I9c7a9a4d218059de2ad24c8481fd263f8125a8e3
2020-03-05 15:05:37 +00:00 · 2020-03-05 15:05:37 +00:00 · b365c78a21
parent 699ca9e095
commit b365c78a21
1 changed files with 2 additions and 1 deletions
--- a/requires.py
+++ b/requires.py
@ -33,7 +33,8 @@ class KeystoneRequires(RelationBase):
                      'ssl_cert_admin', 'ssl_cert_internal',
                      'ssl_cert_public', 'ssl_key_admin', 'ssl_key_internal',
                      'ssl_key_public', 'api_version', 'service_domain',
-                      'service_domain_id', 'ep_changed']
+                      'service_domain_id', 'ep_changed',
+                      'admin_domain_id', 'admin_user_id', 'admin_project_id']

    @hook('{requires:keystone}-relation-joined')
    def joined(self):