Create trustee user for each bay

Registered by yuanying on 2015-12-18

We want to use a "keystone trust" to manage "X509 objects", "Swift resources" and "Load balancer".
So we should create a temporary "trustee user" for each bay to use keystone trust.

Blueprint information

Status:
Complete
Approver:
Adrian Otto
Priority:
High
Drafter:
yuanying
Direction:
Approved
Assignee:
Hua Wang
Definition:
Approved
Series goal:
Accepted for mitaka
Implementation:
Implemented
Milestone target:
None
Started by
Hua Wang on 2016-03-07
Completed by
Hua Wang on 2016-03-07

Related branches

Sprints

Whiteboard

We should create a temporary trustee user, discussion is https://review.openstack.org/#/c/254705/ - yuanying

Gerrit topic: https://review.openstack.org/#q,topic:bp/create-trustee-user-for-each-bay,n,z

Addressed by: https://review.openstack.org/261285
    Create trustee user for each bay

Addressed by: https://review.openstack.org/268852
    Spec for trust

Gerrit topic: https://review.openstack.org/#q,topic:bug/1536883,n,z

Addressed by: https://review.openstack.org/274527
    Limit the access to certificate

Addressed by: https://review.openstack.org/282207
    Add trust info into heat params

Addressed by: https://review.openstack.org/285136
    limit access to certificate and container:create

Addressed by: https://review.openstack.org/285988
    Add auth_url

Addressed by: https://review.openstack.org/286004
    Add trust info

Gerrit topic: https://review.openstack.org/#q,topic:bp/use-trust-for-tls-cert-generation,n,z

Addressed by: https://review.openstack.org/289121
    Refactor bay_conductor to split trust methods

Addressed by: https://review.openstack.org/336706
    Refactor bay_conductor to split trust methods

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.