OpenStack Compute (nova)

OpenID Authentication Service API in OpenStack Nova

Registered by Jukka Ylitalo on 2011-04-19

Currently, the Django-Nova/Dashboard supports only basic username/password based access. There is separate user credential management both on the web service point and OpenStack. OpenStack relies on the web server for user authentication resulting in Multiple Policy Decision Points (PDP). Integration of OpenID with Openstack allows flexible SSO mechanism for administrators. The solution also removes the existing multiple identity silos in web server and OpenStack.

Read the full specification

Blueprint information

Status:: Complete

Approver:: None

Priority:: Undefined

Drafter:: Jukka Ylitalo

Direction:: Needs approval

Assignee:: Rasib Hassan Khan

Definition:: Obsolete

Series goal:: Proposed for austin

Implementation:: Good progress

Milestone target:: None

Started by: Rasib Hassan Khan on 2011-04-19

Completed by: Vish Ishaya on 2011-10-25

Related branches

Related bugs

Sprints

ods-d

Whiteboard

This will be discussed in the general authentication discussion:
https://blueprints.launchpad.net/openstack-devel/+spec/auth-service

Agenda:

› Authentication in OpenStack
    – Current status
    – Motivation for enhancement
› Overview on OpenID
› Design objectives and components
› Prototype Implementation
    – Action Flow
    – OpenStack Architecture
    – Message Sequence

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

Ashokkumar c