74 lines
1.8 KiB
Plaintext
74 lines
1.8 KiB
Plaintext
# havana
|
|
###############################################################################
|
|
# [ WARNING ]
|
|
# Configuration file maintained by Juju. Local changes may be overwritten.
|
|
###############################################################################
|
|
[DEFAULT]
|
|
admin_token = {{ token }}
|
|
admin_port = {{ admin_port }}
|
|
public_port = {{ public_port }}
|
|
use_syslog = {{ use_syslog }}
|
|
log_config = /etc/keystone/logging.conf
|
|
debug = {{ debug }}
|
|
verbose = {{ verbose }}
|
|
|
|
[sql]
|
|
{% if database_host -%}
|
|
connection = mysql://{{ database_user }}:{{ database_password }}@{{ database_host }}/{{ database }}{% if database_ssl_ca %}?ssl_ca={{ database_ssl_ca }}{% if database_ssl_cert %}&ssl_cert={{ database_ssl_cert }}&ssl_key={{ database_ssl_key }}{% endif %}{% endif %}
|
|
{% else -%}
|
|
connection = sqlite:////var/lib/keystone/keystone.db
|
|
{% endif -%}
|
|
idle_timeout = 200
|
|
|
|
[identity]
|
|
driver = keystone.identity.backends.sql.Identity
|
|
|
|
[credential]
|
|
driver = keystone.credential.backends.sql.Credential
|
|
|
|
[trust]
|
|
driver = keystone.trust.backends.sql.Trust
|
|
|
|
[os_inherit]
|
|
|
|
[catalog]
|
|
driver = keystone.catalog.backends.sql.Catalog
|
|
|
|
[endpoint_filter]
|
|
|
|
[token]
|
|
driver = keystone.token.backends.sql.Token
|
|
expiration = 86400
|
|
|
|
[cache]
|
|
|
|
[policy]
|
|
driver = keystone.policy.backends.rules.Policy
|
|
|
|
[ec2]
|
|
driver = keystone.contrib.ec2.backends.kvs.Ec2
|
|
|
|
[assignment]
|
|
|
|
[oauth1]
|
|
|
|
{% if signing -%}
|
|
[signing]
|
|
token_format = UUID
|
|
certfile = /etc/keystone/ssl/certs/signing_cert.pem
|
|
keyfile = /etc/keystone/ssl/private/signing_key.pem
|
|
ca_certs = /etc/keystone/ssl/certs/ca.pem
|
|
key_size = 1024
|
|
valid_days = 3650
|
|
ca_password = None
|
|
{% endif -%}
|
|
|
|
[auth]
|
|
methods = external,password,token,oauth1
|
|
password = keystone.auth.plugins.password.Password
|
|
token = keystone.auth.plugins.token.Token
|
|
oauth1 = keystone.auth.plugins.oauth1.OAuth
|
|
|
|
[paste_deploy]
|
|
config_file = keystone-paste.ini
|