openstack
/
openstack-ansible-os_keystone
Code Issues Proposed changes
openstack-ansible-os_keystone/templates
History
Miguel Grinberg 0f3dcf6e0e Keystone Federation Identity Provider Configuration 
This change adds the bits necessary to configure Keystone as an
identity provider (IdP) for an external service provider (SP).

* New variables to configure Keystone as an identity provider are now
  supported under a root `keystone_idp` variable. Example configurations
  can be seen in Keystone's defaults file. This configuration includes
  the location of the signing certificate, authentication endpoints and
  list of allowed service providers.

* xmlsec1 is installed in the Keystone containers when IdP configuration
  is enabled.

* The IdP metadata and signing certiciate are generated and installed.

Implements: blueprint keystone-federation
Change-Id: I81455e593e3059633a55f7e341511d5ad9eba76f
 		2015-07-23 20:46:52 +01:00
..
keystone-fernet-rotate.sh.j2 Updated default fernet key usage 2015-06-30 09:54:31 -05:00
keystone-httpd.conf.j2 Fix errors when enabling SSL for apache 2015-06-24 13:33:12 +01:00
keystone-ports.conf.j2 Convert existing roles into galaxy roles 2015-02-18 10:56:25 +00:00
keystone.Default.conf.j2 Updated ldap config to support multi domain 2015-05-08 18:18:46 +00:00
keystone.conf.j2 Keystone Federation Identity Provider Configuration 2015-07-23 20:46:52 +01:00