Support SAML Federation for the Overcloud

Registered by Andrew Austin on 2018-06-27

Many enterprise operators use SAML identity providers to provide single sign-on services within their organizations. TripleO should expose configuration to deploy SAML federation as part of the overcloud deployment. Currently, configuring a TripleO overcloud to act as a SAML service provider is a manual process that must be re-applied after every overcloud update.

Blueprint information

Status:
Complete
Approver:
Alex Schultz
Priority:
Medium
Drafter:
Andrew Austin
Direction:
Approved
Assignee:
Andrew Austin
Definition:
Approved
Series goal:
Accepted for train
Implementation:
Implemented
Milestone target:
milestone icon train-1
Started by
Juan Antonio Osorio Robles on 2019-03-11
Completed by
Alex Schultz on 2019-06-07

Related branches

Sprints

Whiteboard

[2019-06-07] (aschultz) Marking as implemented since all patches have merged and there doesn't appear to be further work on this at this time.
[2019-03-28] (aschultz) Moving to Train. Please request an FFE if necessary. It looks like the patches are merged so perhaps this is implemented?

Gerrit topic: https://review.openstack.org/#/q/topic:bp/tripleo-saml

Gerrit topic: https://review.openstack.org/#q,topic:bp/tripleo-saml,n,z

Addressed by: https://review.openstack.org/577309
    Add mechanism for cookie-based sessions in endpoints.

Addressed by: https://review.openstack.org/579660
    Add mechanism for cookie-based sessions in endpoints.

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.