OpenID Connect certifiate file is optional
Some ID provider configurations do not require a certificate file. Change the logic to allow this, and update documentation accordingly. Change-Id: I2c34a6b5894402bbebeb3fb96768789bc3c7fe84
This commit is contained in:
parent
dc5eaa4ec7
commit
78f29fdc5d
@ -52,6 +52,7 @@
|
|||||||
with_items: "{{ keystone_identity_providers }}"
|
with_items: "{{ keystone_identity_providers }}"
|
||||||
when:
|
when:
|
||||||
- item.protocol == 'openid'
|
- item.protocol == 'openid'
|
||||||
|
- item.certificate_file is defined
|
||||||
- inventory_hostname in groups[keystone.group]
|
- inventory_hostname in groups[keystone.group]
|
||||||
|
|
||||||
- name: Copying OpenStack Identity Providers attribute mappings
|
- name: Copying OpenStack Identity Providers attribute mappings
|
||||||
|
@ -247,8 +247,8 @@ Identity provider's endpoint:
|
|||||||
certificate_file
|
certificate_file
|
||||||
****************
|
****************
|
||||||
|
|
||||||
Path to the Identity Provider certificate file, the file must be named as
|
Optional path to the Identity Provider certificate file. If included,
|
||||||
'certificate-key-id.pem'. E.g.
|
the file must be named as 'certificate-key-id.pem'. E.g.:
|
||||||
|
|
||||||
.. code-block::
|
.. code-block::
|
||||||
|
|
||||||
|
Loading…
x
Reference in New Issue
Block a user