diff options
| author | Keith Holman <Keith.Holman@windriver.com> | 2014-05-12 10:35:47 -0400 |
|---|---|---|
| committer | Bruce Ashfield <bruce.ashfield@windriver.com> | 2014-05-12 16:44:00 -0400 |
| commit | 257165e293068003d3e933718f6240790affdf4b (patch) | |
| tree | c0d9e582d3112f913a4381e0a48180e1e54d6d2f /meta-openstack | |
| parent | a5059432da6111d3d098740eb5b07e5a0394dfa3 (diff) | |
| download | meta-cloud-services-257165e293068003d3e933718f6240790affdf4b.tar.gz | |
keystone: allow ability to store tokens in UUID or PKI format
Since Grizzly release Keystone defaults to storing tokens in PKI
format. Some software works better with keystone if tokens
are in the older UUID format. This change allows a simple way
to set the storage format within the bitbake receipes. The default
is to use the newer PKI format.
Signed-off-by: Keith Holman <Keith.Holman@windriver.com>
Diffstat (limited to 'meta-openstack')
| -rw-r--r-- | meta-openstack/recipes-devtools/python/python-keystone/keystone.conf | 2 | ||||
| -rw-r--r-- | meta-openstack/recipes-devtools/python/python-keystone_git.bb | 3 |
2 files changed, 4 insertions, 1 deletions
diff --git a/meta-openstack/recipes-devtools/python/python-keystone/keystone.conf b/meta-openstack/recipes-devtools/python/python-keystone/keystone.conf index 3c3efb8..55bf6e8 100644 --- a/meta-openstack/recipes-devtools/python/python-keystone/keystone.conf +++ b/meta-openstack/recipes-devtools/python/python-keystone/keystone.conf | |||
| @@ -128,7 +128,7 @@ expiration = 3600 | |||
| 128 | #cert_required = True | 128 | #cert_required = True |
| 129 | 129 | ||
| 130 | [signing] | 130 | [signing] |
| 131 | #token_format = PKI | 131 | token_format = %TOKEN_FORMAT% |
| 132 | #certfile = /etc/keystone/ssl/certs/signing_cert.pem | 132 | #certfile = /etc/keystone/ssl/certs/signing_cert.pem |
| 133 | #keyfile = /etc/keystone/ssl/private/signing_key.pem | 133 | #keyfile = /etc/keystone/ssl/private/signing_key.pem |
| 134 | #ca_certs = /etc/keystone/ssl/certs/ca.pem | 134 | #ca_certs = /etc/keystone/ssl/certs/ca.pem |
diff --git a/meta-openstack/recipes-devtools/python/python-keystone_git.bb b/meta-openstack/recipes-devtools/python/python-keystone_git.bb index d8fb4ab..a1b4abc 100644 --- a/meta-openstack/recipes-devtools/python/python-keystone_git.bb +++ b/meta-openstack/recipes-devtools/python/python-keystone_git.bb | |||
| @@ -23,6 +23,7 @@ S = "${WORKDIR}/git" | |||
| 23 | inherit setuptools update-rc.d identity hosts default_configs | 23 | inherit setuptools update-rc.d identity hosts default_configs |
| 24 | 24 | ||
| 25 | SERVICE_TOKEN = "password" | 25 | SERVICE_TOKEN = "password" |
| 26 | TOKEN_FORMAT ?= "PKI" | ||
| 26 | 27 | ||
| 27 | do_install_append() { | 28 | do_install_append() { |
| 28 | 29 | ||
| @@ -46,6 +47,8 @@ do_install_append() { | |||
| 46 | sed -e "s:%CONTROLLER_IP%:${CONTROLLER_IP}:g" -i ${KEYSTONE_CONF_DIR}/keystone.conf | 47 | sed -e "s:%CONTROLLER_IP%:${CONTROLLER_IP}:g" -i ${KEYSTONE_CONF_DIR}/keystone.conf |
| 47 | sed -e "s:%CONTROLLER_IP%:${CONTROLLER_IP}:g" -i ${KEYSTONE_CONF_DIR}/identity.sh | 48 | sed -e "s:%CONTROLLER_IP%:${CONTROLLER_IP}:g" -i ${KEYSTONE_CONF_DIR}/identity.sh |
| 48 | 49 | ||
| 50 | sed -e "s:%TOKEN_FORMAT%:${TOKEN_FORMAT}:g" -i ${KEYSTONE_CONF_DIR}/keystone.conf | ||
| 51 | |||
| 49 | if ${@base_contains('DISTRO_FEATURES', 'sysvinit', 'true', 'false', d)}; then | 52 | if ${@base_contains('DISTRO_FEATURES', 'sysvinit', 'true', 'false', d)}; then |
| 50 | install -d ${D}${sysconfdir}/init.d | 53 | install -d ${D}${sysconfdir}/init.d |
| 51 | install -m 0755 ${WORKDIR}/keystone ${D}${sysconfdir}/init.d/keystone | 54 | install -m 0755 ${WORKDIR}/keystone ${D}${sysconfdir}/init.d/keystone |