Browse code
Merge "Support fernet token provider"
Jenkins authored on 2015/07/16 23:03:24Showing 1 changed files
| ... | ... |
@@ -313,6 +313,8 @@ function configure_keystone {
|
| 313 | 313 |
|
| 314 | 314 |
iniset $KEYSTONE_CONF eventlet_server admin_workers "$API_WORKERS" |
| 315 | 315 |
# Public workers will use the server default, typically number of CPU. |
| 316 |
+ |
|
| 317 |
+ iniset $KEYSTONE_CONF fernet_tokens key_repository "$KEYSTONE_CONF_DIR/fernet-keys/" |
|
| 316 | 318 |
} |
| 317 | 319 |
|
| 318 | 320 |
function configure_keystone_extensions {
|
| ... | ... |
@@ -475,11 +477,15 @@ function init_keystone {
|
| 475 | 475 |
$KEYSTONE_BIN_DIR/keystone-manage db_sync --extension "${extension_value}"
|
| 476 | 476 |
done |
| 477 | 477 |
|
| 478 |
- if [[ "$KEYSTONE_TOKEN_FORMAT" != "uuid" ]]; then |
|
| 478 |
+ if [[ "$KEYSTONE_TOKEN_FORMAT" == "pki" || "$KEYSTONE_TOKEN_FORMAT" == "pkiz" ]]; then |
|
| 479 | 479 |
# Set up certificates |
| 480 | 480 |
rm -rf $KEYSTONE_CONF_DIR/ssl |
| 481 | 481 |
$KEYSTONE_BIN_DIR/keystone-manage pki_setup |
| 482 | 482 |
fi |
| 483 |
+ if [[ "$KEYSTONE_TOKEN_FORMAT" == "fernet" ]]; then |
|
| 484 |
+ rm -rf "$KEYSTONE_CONF_DIR/fernet-keys/" |
|
| 485 |
+ $KEYSTONE_BIN_DIR/keystone-manage fernet_setup |
|
| 486 |
+ fi |
|
| 483 | 487 |
} |
| 484 | 488 |
|
| 485 | 489 |
# install_keystoneclient() - Collect source and prepare |