Browse code
Use Keystone's default token format if not set
Devstack was setting its own default for Keystone's token format, so
when Keystone's default token format changed then devstack needed to
be updated. With this change, devstack will only override Keystone's
token format if KEYSTONE_TOKEN_FORMAT is set explicitly. PKI setup
is assumed to be needed unless the KEYSTONE_TOKEN_FORMAT is set to
UUID.
Change-Id: Idfa78e93abd80273dadcf37007a024bb6a783a48
Brant Knudson authored on 2014/06/20 06:55:45Showing 1 changed files
| ... | ... |
@@ -56,7 +56,7 @@ KEYSTONE_ASSIGNMENT_BACKEND=${KEYSTONE_ASSIGNMENT_BACKEND:-sql}
|
| 56 | 56 |
|
| 57 | 57 |
# Select Keystone's token format |
| 58 | 58 |
# Choose from 'UUID', 'PKI', or 'PKIZ' |
| 59 |
-KEYSTONE_TOKEN_FORMAT=${KEYSTONE_TOKEN_FORMAT:-PKIZ}
|
|
| 59 |
+KEYSTONE_TOKEN_FORMAT=$(echo ${KEYSTONE_TOKEN_FORMAT} | tr '[:upper:]' '[:lower:]')
|
|
| 60 | 60 |
|
| 61 | 61 |
# Set Keystone interface configuration |
| 62 | 62 |
KEYSTONE_AUTH_HOST=${KEYSTONE_AUTH_HOST:-$SERVICE_HOST}
|
| ... | ... |
@@ -202,10 +202,8 @@ function configure_keystone {
|
| 202 | 202 |
|
| 203 | 203 |
iniset $KEYSTONE_CONF DEFAULT admin_token "$SERVICE_TOKEN" |
| 204 | 204 |
|
| 205 |
- if [[ "$KEYSTONE_TOKEN_FORMAT" = "UUID" ]]; then |
|
| 206 |
- iniset $KEYSTONE_CONF token provider keystone.token.providers.uuid.Provider |
|
| 207 |
- elif [[ "$KEYSTONE_TOKEN_FORMAT" = "PKI" ]]; then |
|
| 208 |
- iniset $KEYSTONE_CONF token provider keystone.token.providers.pki.Provider |
|
| 205 |
+ if [[ "$KEYSTONE_TOKEN_FORMAT" != "" ]]; then |
|
| 206 |
+ iniset $KEYSTONE_CONF token provider keystone.token.providers.$KEYSTONE_TOKEN_FORMAT.Provider |
|
| 209 | 207 |
fi |
| 210 | 208 |
|
| 211 | 209 |
iniset $KEYSTONE_CONF database connection `database_connection_url keystone` |
| ... | ... |
@@ -386,7 +384,7 @@ function init_keystone {
|
| 386 | 386 |
# Initialize keystone database |
| 387 | 387 |
$KEYSTONE_DIR/bin/keystone-manage db_sync |
| 388 | 388 |
|
| 389 |
- if [[ "$KEYSTONE_TOKEN_FORMAT" == "PKI" || "$KEYSTONE_TOKEN_FORMAT" == "PKIZ" ]]; then |
|
| 389 |
+ if [[ "$KEYSTONE_TOKEN_FORMAT" != "uuid" ]]; then |
|
| 390 | 390 |
# Set up certificates |
| 391 | 391 |
rm -rf $KEYSTONE_CONF_DIR/ssl |
| 392 | 392 |
$KEYSTONE_DIR/bin/keystone-manage pki_setup |