Browse code
config changes for the latest keystone
Anthony Young authored on 2011/09/23 12:24:27Showing 2 changed files
| ... | ... |
@@ -39,11 +39,10 @@ admin_host = 0.0.0.0 |
| 39 | 39 |
admin_port = 5001 |
| 40 | 40 |
|
| 41 | 41 |
#Role that allows to perform admin operations. |
| 42 |
-keystone-admin-role = Admin |
|
| 42 |
+keystone-admin-role = KeystoneAdmin |
|
| 43 | 43 |
|
| 44 | 44 |
#Role that allows to perform service admin operations. |
| 45 |
-# FIXME: need to separate this into a different role like KeystoneServiceAdmin |
|
| 46 |
-keystone-service-admin-role = Admin |
|
| 45 |
+keystone-service-admin-role = KeystoneServiceAdmin |
|
| 47 | 46 |
|
| 48 | 47 |
[keystone.backends.sqlalchemy] |
| 49 | 48 |
# SQLAlchemy connection string for the reference implementation registry |
| ... | ... |
@@ -5,13 +5,19 @@ $BIN_DIR/keystone-manage $* tenant add admin |
| 5 | 5 |
$BIN_DIR/keystone-manage $* tenant add demo |
| 6 | 6 |
|
| 7 | 7 |
# Users |
| 8 |
-$BIN_DIR/keystone-manage $* user add admin secrete 1 |
|
| 9 |
-$BIN_DIR/keystone-manage $* user add demo secrete 2 |
|
| 8 |
+$BIN_DIR/keystone-manage $* user add admin secrete |
|
| 9 |
+$BIN_DIR/keystone-manage $* user add demo secrete |
|
| 10 | 10 |
|
| 11 | 11 |
# Roles |
| 12 | 12 |
$BIN_DIR/keystone-manage $* role add Admin |
| 13 | 13 |
$BIN_DIR/keystone-manage $* role add Member |
| 14 |
+$BIN_DIR/keystone-manage $* role add KeystoneAdmin |
|
| 15 |
+$BIN_DIR/keystone-manage $* role add KeystoneServiceAdmin |
|
| 16 |
+$BIN_DIR/keystone-manage $* role grant Admin admin 1 |
|
| 17 |
+$BIN_DIR/keystone-manage $* role grant Member demo 2 |
|
| 14 | 18 |
$BIN_DIR/keystone-manage $* role grant Admin admin |
| 19 |
+$BIN_DIR/keystone-manage $* role grant KeystoneAdmin admin |
|
| 20 |
+$BIN_DIR/keystone-manage $* role grant KeystoneServiceAdmin admin |
|
| 15 | 21 |
|
| 16 | 22 |
# Services |
| 17 | 23 |
$BIN_DIR/keystone-manage $* service add nova_compat nova_compat nova_compat |
| ... | ... |
@@ -26,7 +32,6 @@ $BIN_DIR/keystone-manage $* endpointTemplates add RegionOne 3 http://%HOST_IP%:9 |
| 26 | 26 |
$BIN_DIR/keystone-manage $* endpointTemplates add RegionOne 4 http://%HOST_IP%:5000/v2.0 http://%HOST_IP%:5001/v2.0 http://%HOST_IP%:5000/v2.0 1 1 |
| 27 | 27 |
# $BIN_DIR/keystone-manage $* endpointTemplates add RegionOne swift http://%HOST_IP%:8080/v1/AUTH_%tenant_id% http://%HOST_IP%:8080/ http://%HOST_IP%:8080/v1/AUTH_%tenant_id% 1 1 |
| 28 | 28 |
|
| 29 |
- |
|
| 30 | 29 |
# Tokens |
| 31 | 30 |
$BIN_DIR/keystone-manage $* token add 999888777666 1 1 2015-02-05T00:00 |
| 32 | 31 |
|
| ... | ... |
@@ -46,3 +51,4 @@ $BIN_DIR/keystone-manage $* endpoint add 2 5 |
| 46 | 46 |
$BIN_DIR/keystone-manage $* endpoint add 2 6 |
| 47 | 47 |
|
| 48 | 48 |
$BIN_DIR/keystone-manage $* credentials add admin EC2 'admin:admin' admin admin || echo "no support for adding credentials" |
| 49 |
+$BIN_DIR/keystone-manage $* credentials add demo EC2 'demo:demo' demo demo || echo "no support for adding credentials" |