Allow any auth mechanism

Registered by Jamie Lennox on 2014-08-21

Middleware is currently hardcoded to allow only username and password authentication against the v2 api.

Keystoneclient provides a mechanism to load any plugin from a config file. We should utilize this to allow arbitrary auth plugins and different auth versions

Blueprint information

Status:
Complete
Approver:
None
Priority:
Medium
Drafter:
Jamie Lennox
Direction:
Approved
Assignee:
Jamie Lennox
Definition:
Approved
Series goal:
Accepted for 1.x.x
Implementation:
Implemented
Milestone target:
None
Started by
Morgan Fainberg on 2014-10-27
Completed by
Jamie Lennox on 2015-03-09

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:authplugin,n,z

Addressed by: https://review.openstack.org/115857
    Convert authentication into a plugin

Gerrit topic: https://review.openstack.org/#q,topic:bp/pluggable-auth,n,z

Addressed by: https://review.openstack.org/129551
    Revert "Support service user and project in non-default domain"

Addressed by: https://review.openstack.org/129552
    Allow loading other auth methods in auth_token

Addressed by: https://review.openstack.org/129868
    Use connection retrying from keystoneclient

Addressed by: https://review.openstack.org/130531
    Add versions to requests

Addressed by: https://review.openstack.org/130530
    Use an adapter in IdentityServer

Addressed by: https://review.openstack.org/130247
    Use Discovery fixtures for auth token tests

Addressed by: https://review.openstack.org/130534
    Split identity server into v2 and v3

Addressed by: https://review.openstack.org/130533
    Additional discovery changes

Addressed by: https://review.openstack.org/130532
    Use real discovery object in auth_token middleware.

Gerrit topic: https://review.openstack.org/#q,topic:disc,n,z

Gerrit topic: https://review.openstack.org/#q,topic:bug/1372142,n,z

Gerrit topic: https://review.openstack.org/#q,topic:adapter,n,z

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.