Add OIDCAuthRequestParams parameter to template
Added the OIDCAuthRequestParams line to the keystone-httpd.conf template This allows for the addition of optional extra parameters that will be sent along with the Authorization Request when using federated logins: https://github.com/zmartzone/mod_auth_openidc/blob/master/auth_openidc.conf Change-Id: I020986bbc2d5baa73a19ee7e1070019cb4e9ce63
This commit is contained in:
parent
62aa03a247
commit
f0ce41ea61
|
@ -53,6 +53,9 @@ Listen {{ keystone_service_port }}
|
||||||
OIDCCacheType memcache
|
OIDCCacheType memcache
|
||||||
OIDCMemCacheServers "{{ keystone_cache_servers | join(' ') }}"
|
OIDCMemCacheServers "{{ keystone_cache_servers | join(' ') }}"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
{% if keystone_sp.trusted_idp_list.0.oidc_auth_request_params is defined -%}
|
||||||
|
OIDCAuthRequestParams {{ keystone_sp.trusted_idp_list.0.oidc_auth_request_params }}
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
<Location /v3/OS-FEDERATION/identity_providers/{{ keystone_sp.trusted_idp_list.0.name }}/protocols/openid/auth>
|
<Location /v3/OS-FEDERATION/identity_providers/{{ keystone_sp.trusted_idp_list.0.name }}/protocols/openid/auth>
|
||||||
Require valid-user
|
Require valid-user
|
||||||
|
|
Loading…
Reference in New Issue