Add keystone_authtoken section into the heat.conf.sample
We support (and need) this section, now that oslo config generator supports external modules lets add the section into the sample. Change-Id: I3f7f614906204fa2e5a743c62882d2dcf196640a
This commit is contained in:
		| @@ -683,6 +683,119 @@ | ||||
| #workers=0 | ||||
|  | ||||
|  | ||||
| [keystone_authtoken] | ||||
|  | ||||
| # | ||||
| # Options defined in keystoneclient.middleware.auth_token | ||||
| # | ||||
|  | ||||
| # Prefix to prepend at the beginning of the path (string | ||||
| # value) | ||||
| #auth_admin_prefix= | ||||
|  | ||||
| # Host providing the admin Identity API endpoint (string | ||||
| # value) | ||||
| #auth_host=127.0.0.1 | ||||
|  | ||||
| # Port of the admin Identity API endpoint (integer value) | ||||
| #auth_port=35357 | ||||
|  | ||||
| # Protocol of the admin Identity API endpoint(http or https) | ||||
| # (string value) | ||||
| #auth_protocol=https | ||||
|  | ||||
| # Complete public Identity API endpoint (string value) | ||||
| #auth_uri=<None> | ||||
|  | ||||
| # API version of the admin Identity API endpoint (string | ||||
| # value) | ||||
| #auth_version=<None> | ||||
|  | ||||
| # Do not handle authorization requests within the middleware, | ||||
| # but delegate the authorization decision to downstream WSGI | ||||
| # components (boolean value) | ||||
| #delay_auth_decision=false | ||||
|  | ||||
| # Request timeout value for communicating with Identity API | ||||
| # server. (boolean value) | ||||
| #http_connect_timeout=<None> | ||||
|  | ||||
| # How many times are we trying to reconnect when communicating | ||||
| # with Identity API Server. (integer value) | ||||
| #http_request_max_retries=3 | ||||
|  | ||||
| # Allows to pass in the name of a fake http_handler callback | ||||
| # function used instead of httplib.HTTPConnection or | ||||
| # httplib.HTTPSConnection. Useful for unit testing where | ||||
| # network is not available. (string value) | ||||
| #http_handler=<None> | ||||
|  | ||||
| # Single shared secret with the Keystone configuration used | ||||
| # for bootstrapping a Keystone installation, or otherwise | ||||
| # bypassing the normal authentication process. (string value) | ||||
| #admin_token=<None> | ||||
|  | ||||
| # Keystone account username (string value) | ||||
| #admin_user=<None> | ||||
|  | ||||
| # Keystone account password (string value) | ||||
| #admin_password=<None> | ||||
|  | ||||
| # Keystone service account tenant name to validate user tokens | ||||
| # (string value) | ||||
| #admin_tenant_name=admin | ||||
|  | ||||
| # Env key for the swift cache (string value) | ||||
| #cache=<None> | ||||
|  | ||||
| # Required if Keystone server requires client certificate | ||||
| # (string value) | ||||
| #certfile=<None> | ||||
|  | ||||
| # Required if Keystone server requires client certificate | ||||
| # (string value) | ||||
| #keyfile=<None> | ||||
|  | ||||
| # A PEM encoded Certificate Authority to use when verifying | ||||
| # HTTPs connections. Defaults to system CAs. (string value) | ||||
| #cafile=<None> | ||||
|  | ||||
| # Verify HTTPS connections. (boolean value) | ||||
| #insecure=false | ||||
|  | ||||
| # Directory used to cache files related to PKI tokens (string | ||||
| # value) | ||||
| #signing_dir=<None> | ||||
|  | ||||
| # If defined, the memcache server(s) to use for caching (list | ||||
| # value) | ||||
| #memcached_servers=<None> | ||||
|  | ||||
| # In order to prevent excessive requests and validations, the | ||||
| # middleware uses an in-memory cache for the tokens the | ||||
| # Keystone API returns. This is only valid if memcache_servers | ||||
| # is defined. Set to -1 to disable caching completely. | ||||
| # (integer value) | ||||
| #token_cache_time=300 | ||||
|  | ||||
| # Value only used for unit testing (integer value) | ||||
| #revocation_cache_time=1 | ||||
|  | ||||
| # (optional) if defined, indicate whether token data should be | ||||
| # authenticated or authenticated and encrypted. Acceptable | ||||
| # values are MAC or ENCRYPT.  If MAC, token data is | ||||
| # authenticated (with HMAC) in the cache. If ENCRYPT, token | ||||
| # data is encrypted and authenticated in the cache. If the | ||||
| # value is not one of these options or empty, auth_token will | ||||
| # raise an exception on initialization. (string value) | ||||
| #memcache_security_strategy=<None> | ||||
|  | ||||
| # (optional, mandatory if memcache_security_strategy is | ||||
| # defined) this string is used for key derivation. (string | ||||
| # value) | ||||
| #memcache_secret_key=<None> | ||||
|  | ||||
|  | ||||
| [auth_password] | ||||
|  | ||||
| # | ||||
|   | ||||
| @@ -1 +1 @@ | ||||
| export OSLO_CONFIG_GENERATOR_EXTRA_MODULES= | ||||
| export OSLO_CONFIG_GENERATOR_EXTRA_MODULES=keystoneclient.middleware.auth_token | ||||
		Reference in New Issue
	
	Block a user
	 Angus Salkeld
					Angus Salkeld