summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | | | Remove mentions of essex in docs (bug 1085247)Eduardo Patrocinio2012-12-101-10/+10
| | | | | | | | | | | | | | | | | | | | Change-Id: I663e9317c2b5eb5fe7190ea6c656fcebff7078fd
* | | | | Merge "Port to argparse based cfg"Jenkins2012-12-102-239/+345
|\ \ \ \ \
| * | | | | Port to argparse based cfgMark McLoughlin2012-12-052-239/+345
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Sync the following changes from oslo-incubator: 3557d84 Fix ListOpt to trim whitespace 01ab910 Fix set_default() with boolean CLI options af18eaa Improve cfg's argparse sub-parsers support f21e1d9 Fix regression with cfg CLI arguments ceb4aa7 Fix broken --help with CommonConfigOpts 5e9503b Hide the GroupAttr conf and group attributes b6d24bb updating sphinx documentation 403509e Don't reference argparse._StoreAction e17deb8 Fix minor coding style issue 0c29e1d Remove ConfigCliParser class 5b9cb41 Add support for positional arguments dbc72a6 Use stock argparse behaviour for optional args 768a147 Use stock argparse --usage behaviour ac180b9 Use stock argparse --version behaviour 0787e38 Remove add_option() method 5afead0 Completely remove cfg's disable_interspersed_args() 5f564b2 argparse support for cfg d7b6397 Add a missing comma in a docstring. aca1805 cfg: fix required if option has a dash The main API change affecting keystone is that CONF() no longer returns unparsed arguments. The keystone-manage command is updated to use argparse sub-parsers to achieve the same effect. Change-Id: Ie8972ce851f1247d8710e9e0611bb3e2f843cb45
* | | | | | Ensure serviceCatalog is list when empty, not dictBrian Waldon2012-12-062-3/+18
| |_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | Fixes bug 1087405. Change-Id: I152c7f418a66ccfe541e26efe75b59bffa6c3849
* | | | | Merge "Bug 1075090 -- Fixing log messages in python source code to support ↵Jenkins2012-12-0515-72/+80
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | internationalization."
| * | | | | Bug 1075090 -- Fixing log messages in python source code to support ↵Nachiappan VR N2012-12-0415-72/+80
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | internationalization. Change-Id: I6b50abaa82effad8feaaac8d85086ca8b5d42590
* | | | | Merge "Only 'import *' from 'core' modules"Jenkins2012-12-0513-226/+246
|\ \ \ \ \
| * | | | | Only 'import *' from 'core' modulesDolph Mathews2012-12-0513-226/+246
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Renamed identity.controllers.* and identity.routers.* since they now occopy unique namespaces (thanks ayoung!) - Moved catalog and policy controllers into their own respective modules Change-Id: Ib9e277355e0eac15d4d218785c816b718b493b5b
* | | | | Merge "use keystone test and change config during setUp"Jenkins2012-12-051-7/+9
|\ \ \ \ \
| * | | | | use keystone test and change config during setUpIonuț Arțăriși2012-12-051-7/+9
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also fixes this traceback which I keep getting on devstack: ERROR: test_create_certs (tests.test_cert_setup.CertSetupTestCase) ---------------------------------------------------------------------- Traceback (most recent call last): File "/opt/stack/keystone/tests/test_cert_setup.py", line 52, in tearDown shutil.rmtree(rootdir(SSLDIR)) File "/usr/lib/python2.7/shutil.py", line 237, in rmtree onerror(os.listdir, path, sys.exc_info()) File "/usr/lib/python2.7/shutil.py", line 235, in rmtree names = os.listdir(path) OSError: [Errno 2] No such file or directory: '/opt/stack/keystone/tests/ssl/' Fixes bug 1086812 Change-Id: Iba10822aaf1284549d610bb1172df03ffc48f363
* / / / / Added documentation for the external auth supportAlvaro Lopez Garcia2012-12-032-0/+118
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This covers given authentication using REMOTE_USER and also the way to implement custom auth with WSGI middleware. DocImpact blueprint: pluggable-identity-authentication-handlers Change-Id: Idbac8c38d1f0be1febbbc8056c929bada6bbb07e
* | | | Merge "check the redirected path on the request, not the response"Jenkins2012-12-031-4/+4
|\ \ \ \
| * | | | check the redirected path on the request, not the responseIonuț Arțăriși2012-11-301-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The request object's path changes when it gets redirected. This behaviour is in tune with the latest WebOb code as well as the old. The response environ defaults to None in WebOb >= 1.2b1 http://docs.webob.org/en/latest/news.html#b1 Change-Id: I557563ce5407a8ef1b5dae680e456e589285be25
* | | | | Validate password type (bug 1081861)Wu Wenxiang2012-11-301-4/+8
|/ / / / | | | | | | | | | | | | | | | | | | | | Raise keystone.exception.ValidationError when password type was not string Change-Id: Ib7538806777db0fe3a3cf9f22bf06a1d505c232f
* | / / split identities module into logical partsAdam Young2012-11-294-614/+681
| |/ / |/| | | | | | | | | | | | | | remove unneeded imports from core Change-Id: I02fc2439cc115878d8081e052faf9ff96d20f6ec
* | | Ensure token expiration is maintained (bug 1079216)Dolph Mathews2012-11-282-0/+58
| | | | | | | | | | | | Change-Id: I95853ec36e9c4cd937cfac7e08b648e830f9efd0
* | | Merge "normalize identity"Jenkins2012-11-279-12/+290
|\ \ \
| * | | normalize identityAdam Young2012-11-279-12/+290
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | modify tables by adding columns, and modify entities by adding attributes for password, description and enabled update tests to deal with change from 'False' and 'True' to the python values False and True Added a Text type from SQL Alchemy Bug 1070351 Bug 1023544 Change-Id: I066c788b5d08a8f42a9b5412ea9e29e4fe9ba205
* | | Merge "Fixes typo in keystone setup doc"Jenkins2012-11-271-1/+1
|\ \ \
| * | | Fixes typo in keystone setup docTom Fifield2012-11-271-1/+1
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | fixes bug 1083391 A one character change to fix a typo in setup doc, reported by a user :s Change-Id: I4fefec089c9ded4b773f4b3641e30162a4faa2f8
* / | Imported Translations from TransifexOpenStack Jenkins2012-11-271-9/+1
|/ / | | | | | | Change-Id: I2cb4f8bd3891b474413eef11aae62188b358d359
* / Stop using cfg's internal implementation detailsMark McLoughlin2012-11-262-2/+4
|/ | | | | | | | | | | | | The fact that a cfg opt register using register_opt() is available via the command line is actually a bug (see bug #1082279). Also, using the _cli_values attribute is clearly poking into private implementation details. Fix both issues by registering the opt using register_cli_opt() and accessing its value the normal way. Change-Id: If170dcd96daae5b4c3d7cdebed914df417c2209b
* Merge "Expose auth failure details in debug mode"Jenkins2012-11-206-37/+40
|\
| * Expose auth failure details in debug modeDolph Mathews2012-11-206-37/+40
| | | | | | | | | | | | | | | | | | | | | | | | Users can now run keystone with debug = True to reveal detailed messages about authentication/authorization failures. This is especially useful for new users setting up OpenStack for the first time. Example: http://paste.openstack.org/raw/26228/ DocImpact Change-Id: I0d072d1f0147b53da90cd4214a1e843bf39ee8e4
* | Merge "Utilize policy.json by default (bug 1043758)"Jenkins2012-11-203-14/+10
|\ \
| * | Utilize policy.json by default (bug 1043758)Dolph Mathews2012-11-203-14/+10
| | | | | | | | | | | | Change-Id: I03daf10aa4f689fe323e39537c312d1e783db313
* | | Merge "Wrap v3 API with RBAC (bug 1023943)"Jenkins2012-11-205-82/+151
|\| | | |/ |/|
| * Wrap v3 API with RBAC (bug 1023943)Dolph Mathews2012-11-205-82/+151
| | | | | | | | Change-Id: Ie77be83054ea88bb0860260e1750196ac5ded650
* | Merge "Expose authn/z failure info to API in debug mode"Jenkins2012-11-202-10/+102
|\ \ | |/ |/|
| * Expose authn/z failure info to API in debug modeDolph Mathews2012-11-152-10/+102
| | | | | | | | | | | | | | | | | | | | | | This allows us to raise exceptions with very specific messages: raise Unauthorized('User name not recognized') In debug mode, this feedback would be exposed to the API user; without debug mode, these details are suppressed. Change-Id: I05c5dce3b1e2ba1123450b302e10b8ba3c265557
* | Merge "v3 Identity"Jenkins2012-11-206-119/+886
|\ \
| * | v3 IdentityDolph Mathews2012-11-206-119/+886
| | | | | | | | | | | | | | | | | | | | | - v3 identity tests (bug 1023930) - v3 identity implementation (bug 1023937) Change-Id: Ic46575afe9760d9da85e262d0cf063ea002d9dcd
* | | Merge "v3 Catalog"Jenkins2012-11-208-87/+263
|\| |
| * | v3 CatalogDolph Mathews2012-11-208-87/+263
| | | | | | | | | | | | | | | | | | | | | - v3 catalog tests (bug 1023933) - v3 catalog implementation (bug 1023938) Change-Id: Ie118819d25afbff62327ffc8be5b5fda2ef7f4ed
* | | Merge "tweaking docs to fix link to wiki Keystone page"Jenkins2012-11-205-14/+24
|\ \ \ | |/ / |/| |
| * | tweaking docs to fix link to wiki Keystone pageJoe Heck2012-11-105-14/+24
| | | | | | | | | | | | | | | | | | | | | | | | updated docstrings to remove two errors reformatted front page header to be consistent added links to autogenerated python documentation Change-Id: I59fddc12ff458bbd0102a40d4d85903ab6bd6394
* | | Merge "v3 Policies"Jenkins2012-11-2015-22/+607
|\ \ \
| * | | v3 PoliciesDolph Mathews2012-11-1915-22/+607
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - v3 policy (bp rbac-keystone-api) - v3 policy tests (bug 1023935) - v3 policy implementation (bug 1023939) Change-Id: I163fbb67726c295fe9ed09b68cd18d2273345d29
* | | | Merge "Import auth_token middleware from keystoneclient"Jenkins2012-11-193-833/+12
|\ \ \ \
| * | | | Import auth_token middleware from keystoneclientHenry Nash2012-11-193-833/+12
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Although the master auth_token file is now in keystoneclient, it will take some time to get all the paste files to point to it there rather than here. Hence, we import it back here to provide backward compatibility for a release or so, after which we will remove it from the server. Change-Id: Iccdb7839a611cdda233e4ea96f68c64d6d82f49c
* | | | Merge "Refix transient test failures"Jenkins2012-11-191-6/+9
|\ \ \ \ | |/ / / |/| | |
| * | | Refix transient test failuresAlvaro Lopez Garcia2012-11-161-6/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Commit a10bd7a8eb418a4d9e84a9511ca3f0669e6e02e7 fixed the issue with transient test failures, but during the rebase of the commit be754ff2bc05a0d262469edd7ce8fac19d457231 the fix was lost. Fixes bug 1077065 Change-Id: I14311f56e6dd0103620b58e64bf0c78c7e32f61c
* | | | Merge "Make the controller addresses configurable."Jenkins2012-11-161-24/+28
|\ \ \ \
| * | | | Make the controller addresses configurable.Jaroslav Henner2012-11-161-24/+28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The addresses in sample_data were hard-coded to localhost. This is a problem when deploying not-so-all-in-one deployment -- one controller and couple of compute nodes. It was also complicating access from outside. Change-Id: Iee53c3f4376c3628e1543afb6dc7e964a3a14ab2
* | | | | Imported Translations from TransifexOpenStack Jenkins2012-11-163-1/+81
| |/ / / |/| | | | | | | | | | | Change-Id: I764e7dbb523c8720598ecbdce3d8ef997c882b2c
* | | | Merge "Ensures User is member of tenant in ec2 validation"Jenkins2012-11-151-7/+10
|\ \ \ \
| * | | | Ensures User is member of tenant in ec2 validationVishvananda Ishaya2012-11-131-7/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It is possible that a user is no longer a member of a tenant when they attempt to use an ec2 token. This checks to make sure that the user still has at least one valid role in the tenant before authenticating them. This should automatically work for the s3 version as well since it is a subclass. Fixes bug 1064914 Change-Id: Ieb237bae936a7b00ce7ba4d4c59aec6c7a69ec21
* | | | | Merge "Refactor TokenController.authenticate() method."Jenkins2012-11-153-230/+444
|\ \ \ \ \
| * | | | | Refactor TokenController.authenticate() method.Alvaro Lopez Garcia2012-11-153-230/+444
| | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I29710f749c67cf83ccad12deee54fe6b71dd53b8
* | | | | | Merge "populate table check."Jenkins2012-11-151-1/+15
|\ \ \ \ \ \ | |/ / / / / |/| | | | |
generated by cgit (git 2.34.1) at 2026-03-21 03:07:49 +0000