castellan

History

Mark Goddard 162039467a barbican key manager: Add support for service user This change adds support to the Barbican key manager for configuring a service user. This can be used to provide additional security through the combination of a user token and a service token, with appropriate modifications to Barbican API policy. Use of a service user is enabled via the [barbican] send_service_user_token option, which defaults to False. When set to True, the service user is configured via keystoneauth options in the barbican_service_user group. Change-Id: I143cb57c8534a8dc0a91e6e42917dd0c134170c0	2021-06-21 12:48:03 +00:00
..
notes	barbican key manager: Add support for service user	2021-06-21 12:48:03 +00:00
source	Update master for stable/wallaby	2021-03-18 11:11:13 +00:00

Mark Goddard 162039467a barbican key manager: Add support for service user

This change adds support to the Barbican key manager for configuring a
service user. This can be used to provide additional security through
the combination of a user token and a service token, with appropriate
modifications to Barbican API policy.

Use of a service user is enabled via the [barbican]
send_service_user_token option, which defaults to False. When set to
True, the service user is configured via keystoneauth options in the
barbican_service_user group.

Change-Id: I143cb57c8534a8dc0a91e6e42917dd0c134170c0

2021-06-21 12:48:03 +00:00

notes

barbican key manager: Add support for service user

2021-06-21 12:48:03 +00:00

source

Update master for stable/wallaby

2021-03-18 11:11:13 +00:00