dc31f76a27
For the OS-OAUTH1 Keystone extension to fully work under Apache, the WSGIPassAuthorization parameter must be set to On, rather than the default of Off. This will make functional testing of this extension much easier. Change-Id: I5dcbdd27e7ef7a60fe3c7cb8b9c3c83b4197dfc1
38 lines
1.1 KiB
Plaintext
38 lines
1.1 KiB
Plaintext
Listen %PUBLICPORT%
|
|
Listen %ADMINPORT%
|
|
|
|
<VirtualHost *:%PUBLICPORT%>
|
|
WSGIDaemonProcess keystone-public processes=5 threads=1 user=%USER% display-name=%{GROUP}
|
|
WSGIProcessGroup keystone-public
|
|
WSGIScriptAlias / %PUBLICWSGI%
|
|
WSGIApplicationGroup %{GLOBAL}
|
|
WSGIPassAuthorization On
|
|
<IfVersion >= 2.4>
|
|
ErrorLogFormat "%{cu}t %M"
|
|
</IfVersion>
|
|
ErrorLog /var/log/%APACHE_NAME%/keystone.log
|
|
CustomLog /var/log/%APACHE_NAME%/keystone_access.log combined
|
|
%SSLENGINE%
|
|
%SSLCERTFILE%
|
|
%SSLKEYFILE%
|
|
</VirtualHost>
|
|
|
|
<VirtualHost *:%ADMINPORT%>
|
|
WSGIDaemonProcess keystone-admin processes=5 threads=1 user=%USER% display-name=%{GROUP}
|
|
WSGIProcessGroup keystone-admin
|
|
WSGIScriptAlias / %ADMINWSGI%
|
|
WSGIApplicationGroup %{GLOBAL}
|
|
<IfVersion >= 2.4>
|
|
ErrorLogFormat "%{cu}t %M"
|
|
</IfVersion>
|
|
ErrorLog /var/log/%APACHE_NAME%/keystone.log
|
|
CustomLog /var/log/%APACHE_NAME%/keystone_access.log combined
|
|
%SSLENGINE%
|
|
%SSLCERTFILE%
|
|
%SSLKEYFILE%
|
|
</VirtualHost>
|
|
|
|
# Workaround for missing path on RHEL6, see
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1121019
|
|
WSGISocketPrefix /var/run/%APACHE_NAME%
|