openstack/openstack-ansible-os_keystone
Code Issues Proposed changes
339 Commits 7 Branches 23 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Logan V b3425781ec Rebuild credential-key repo during keystone[0] rebuild 
When the first Keystone container is rebult in an existing environment,
the credential key repository is overwritten with new keys and the
existing keys are overwritten on the other infrastructure hosts without
any migration taking place. This results in an irrevocable loss of
the keys used to encrypt the credentials.

Now we will collect keys from any existing credential keys on the other
containers and use them to rebuild the credential-key repo on the primary
container before performing a key migration and rotation.

If no keys are found on the other containers, we will perform a
credential_setup on the primary container and sync the keys, just
as we would have before.

Closes-Bug: #1667960
Change-Id: Ic616d397574573629273838fbf68ea3f6bdb0468
2017-03-04 02:46:39 +00:00
defaults
Cap the number of worker threads
2017-02-23 05:15:53 -05:00
doc
Use https instead of http for git.openstack.org
2017-02-06 17:01:49 +07:00
examples
[DOCS] Move keystone federation role docs
2016-08-16 08:46:08 +00:00
files
Implement keystone venv support
2015-10-14 13:59:47 -05:00
handlers
Remove Trusty support from os_keystone role
2016-12-15 13:18:55 +00:00
library
Resolved Keystone Federation bugs
2017-02-07 21:01:09 -06:00
meta
Remove Trusty support from os_keystone role
2016-12-15 13:18:55 +00:00
releasenotes
Rebuild credential-key repo during keystone[0] rebuild
2017-03-04 02:46:39 +00:00
tasks
Rebuild credential-key repo during keystone[0] rebuild
2017-03-04 02:46:39 +00:00
templates
Update paste, policy and rootwrap configurations 2017-02-13
2017-02-13 17:53:19 -06:00
tests
Split out Keystone upgrade into it's own script
2017-02-23 17:06:56 +00:00
vars
Add which in CentOS package list
2017-01-11 13:58:31 -05:00
.gitignore
Implementing stricter permissions on config files
2017-02-08 09:18:34 -05:00
.gitreview
Implement base configuration for independent repository
2016-03-02 10:09:25 -05:00
bindep.txt
Work around Trusty CI bindep issue
2017-02-09 14:00:27 +00:00
CONTRIBUTING.rst
Updated role to be an independent role
2016-02-26 14:13:43 -06:00
LICENSE
Updated role to be an independent role
2016-02-26 14:13:43 -06:00
manual-test.rc
Use centralised test scripts
2016-09-28 08:56:33 +01:00
README.rst
Show team and repo badges on README
2016-11-25 16:13:03 +01:00
run_tests.sh
Install python2 for Ubuntu 16.04 and CentOS 7 in Vagrant
2017-02-07 09:49:08 +07:00
setup.cfg
Update home page link in cfg file
2016-09-20 14:21:45 +05:30
setup.py
Updated from global requirements
2017-03-02 11:51:52 +00:00
test-requirements.txt
Updated from global requirements
2017-02-11 17:48:56 +00:00
tox.ini
Split out Keystone upgrade into it's own script
2017-02-23 17:06:56 +00:00
Vagrantfile
Remove Trusty support from os_keystone role
2016-12-15 13:18:55 +00:00

README.rst

Team and repository tags

image

OpenStack-Ansible keystone

Ansible role that installs and configures OpenStack Keystone. Keystone is installed behind the Apache webserver listening on port 5000 and port 35357 by default.

Documentation for the project can be found at: http://docs.openstack.org/developer/openstack-ansible-os_keystone/ The project home is at: http://launchpad.net/openstack-ansible

Description
Role os_keystone for OpenStack-Ansible
Readme 11 MiB
Languages
Jinja 69.4%
Python 22%
Shell 8.6%