add keycloak configuration doc
Change-Id: I920b6b85183720e7a5437415edb80d5f074679b2
This commit is contained in:
Eyal
parent
3442f960f9
commit
ceb8d85d78
@ -11,6 +11,7 @@ General
|
|||||||
resource-state-config
|
resource-state-config
|
||||||
alarm-severity-config
|
alarm-severity-config
|
||||||
profiler-config
|
profiler-config
|
||||||
|
keycloak-config
|
||||||
|
|
||||||
|
|
||||||
Datasources
|
Datasources
|
||||||
|
|||||||
28
doc/source/contributor/keycloak-config.rst
Normal file
28
doc/source/contributor/keycloak-config.rst
Normal file
@ -0,0 +1,28 @@
|
|||||||
|
==================
|
||||||
|
Configure Keycloak
|
||||||
|
==================
|
||||||
|
|
||||||
|
Overview
|
||||||
|
========
|
||||||
|
|
||||||
|
`Keycloak`_, is an open source Identity and Access Management solution aimed at modern applications and services.
|
||||||
|
It can be used as an authentication service instead of keystone.
|
||||||
|
|
||||||
|
.. _Keycloak: http://www.keycloak.org
|
||||||
|
|
||||||
|
Configuration
|
||||||
|
=============
|
||||||
|
|
||||||
|
Keycloak must be enabled **explicitly** in Vitrage configuration file
|
||||||
|
The default authentication mode is keystone::
|
||||||
|
|
||||||
|
[api]
|
||||||
|
auth_mode = keycloak
|
||||||
|
|
||||||
|
[keycloak]
|
||||||
|
auth_url = http://<Keycloak-server-host>:<Keycloak-server-port>/auth
|
||||||
|
insecure = False
|
||||||
|
|
||||||
|
|
||||||
|
- ``auth_url`` url of the Keycloak server defaults to ``http://127.0.0.1:9080/auth``
|
||||||
|
- ``insecure`` If True, SSL/TLS certificate verification is disabled defaults to ``False``
|
||||||
Loading…
Reference in New Issue
Block a user