1e991dc28b
Starting OpenStack Rocky the currently used `uuid` token format is no longer supported and we need to change to use `fernet` tokens. This change provides basic functionalty to initialize fernet token repository and distribute keys to non-leader units. A configuration option is also added allowing change of token format in a controlled manner prior to upgrading to OpenStack Rocky. Further work is required to implement key rotation, actions etc. and these topics will be addressed in separate commits. The commit also fixes a instance of missing release check for writing of `policy.json`, and a few places where writing of `policy.json` previously was omitted. Change-Id: I1d0ff22a5f091b02f5700412745572c246103e9e |
||
|---|---|---|
| .. | ||
| keystone-nginx.conf | ||
| keystone.conf | ||
| logging.conf | ||
| nginx.conf | ||
| policy.json | ||