Store sensitive configs in secret

Change-Id: If03e4560fbedf3d31226eee9ee1e527f90196929
Depends-On: Ie6a9833cdf73b076e24204d47e5898dfb24de43e
This commit is contained in:
Andrey Pavlov 2017-03-06 05:40:42 +00:00
parent 4a6ffd6204
commit ece5b265d7
1 changed files with 10 additions and 7 deletions

View File

@ -9,18 +9,11 @@ configs:
admin_port:
cont: 35357
db:
password: password
name: keystone
username: keystone
wsgi:
processes: 6
threads: 1
fernet_secret_name: keystone-fernet-keys
# 100% random default
credential_key: "2jjLrgOLvI-wj7g-8058SSCw0-ZnL4Ghg5cLuBirxL8="
notifications:
enable: false
@ -29,6 +22,16 @@ configs:
encrypt_tokens_in_memcached:
enabled: true
secret_configs:
keystone:
db:
password: password
name: keystone
username: keystone
credential_key: "2jjLrgOLvI-wj7g-8058SSCw0-ZnL4Ghg5cLuBirxL8="
encrypt_tokens_in_memcached:
secret_key: password
openstack: