1. devstack
  2. Commit 7b07ccf5e4b7f724eceedb069a51c29284b357aa
Browse code

Remove deprecated/obsolete ldap options

The devstack ldap configuration for keystone is still using some
old options that are no longer valid. The write support is
being removed this release. And in previous releases, the ldap
assignment driver support was removed and was not removed here.

Change-Id: I538626b681eaee6a7ac10dfbc29605b73fbe13bf

Eric Brown authored on 2016/10/27 22:14:00
Showing 1 changed files
lib/keystone
History View file @ 7b07ccf
... ... 
@@ -221,13 +221,6 @@ function configure_keystone {
221 221 
         iniset $KEYSTONE_CONF ldap password $LDAP_PASSWORD
222 222 
         iniset $KEYSTONE_CONF ldap user $LDAP_MANAGER_DN
223 223 
         iniset $KEYSTONE_CONF ldap suffix $LDAP_BASE_DN
224 
-        iniset $KEYSTONE_CONF ldap use_dumb_member "True"
225 
-        iniset $KEYSTONE_CONF ldap user_attribute_ignore "enabled,email,tenants,default_project_id"
226 
-        iniset $KEYSTONE_CONF ldap tenant_attribute_ignore "enabled"
227 
-        iniset $KEYSTONE_CONF ldap tenant_domain_id_attribute "businessCategory"
228 
-        iniset $KEYSTONE_CONF ldap tenant_desc_attribute "description"
229 
-        iniset $KEYSTONE_CONF ldap tenant_tree_dn "ou=Projects,$LDAP_BASE_DN"
230 
-        iniset $KEYSTONE_CONF ldap user_domain_id_attribute "businessCategory"
231 224 
         iniset $KEYSTONE_CONF ldap user_tree_dn "ou=Users,$LDAP_BASE_DN"
232 225 
         iniset $KEYSTONE_CONF DEFAULT member_role_id "9fe2ff9ee4384b1894a90878d3e92bab"
233 226 
         iniset $KEYSTONE_CONF DEFAULT member_role_name "_member_"