| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add support for doing language resolution for a request, based on the
Accept-Language HTTP header.
Using the lazy gettext functionality from oslo gettextutils, it is
possible to use the resolved language to translate an exception message
to the user requested language and return that translation from the API.
Co-authored-by: Luis A. Garcia <luis@linux.vnet.ibm.com>
Co-authored-by: Mathew Odden <mrodden@us.ibm.com>
Implements bp user-locale-api
Change-Id: Id8e92a42039d2f0b01d5c2dada733d068b2bdfeb
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is the base implementation of a unified logging solution for
Keystone from Oslo-incubator. More work is still needed to refactor the
rest of Keystone such that it is completely dependent on the
implementation from Oslo and not the older keystone/common/logging.py
implementation, this is also noted in keystone/common/config.py.
blueprint unified-logging-in-keystone
Change-Id: I711cbac8edd887c52114fb13327e37124ea86737
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The environment module will be configured once, during code initialization.
Subsequently all other possibly-evented modules will retrieve from
environment and transparently obtain either the eventlet or standard
library modules.
If eventlet, httplib, subprocess or other environment dependant module
is referenced outside of the environment module it should be considered
a bug.
The changes to tests are required to ensure that test is imported first
to setup the environment. Hopefully these can all be replaced with an
__init__.py in a post-nose keystone.
Implements: blueprint extract-eventlet
Change-Id: Icacd6f2ee0906ac5d303777c1f87a184f38283bf
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Part of fixing bug #995287
Syncs these two commits from oslo-incubator:
Support overriding oslo localedir too
Add a gettextutils.install() helper function
to get a new gettextutils.install() function which allows the default
localedir to be overwritten via an environment variable.
A few things to note:
- the gettext.install() call is moved from common.config to the
toplevel scripts to fix cases (e.g. the legacy auth_token middleware)
where keystone code might be imported by a program who's default
translation domain is not 'keystone'.
- we add a gettext.install() call in keystone.test so that tests have
the _() builtin installed.
Change-Id: I86562b3a65d371673bb21f7179eecc7602bc0775
|
|
|
|
|
|
|
|
|
|
|
|
| |
PasteDeploy configuration contains class names which might change
between releases. Keeping it separate from user-configurable
parameters allows deployers to move paste-deploy ini file out of
configuration directory to a place where it can be safely overwritten
on updates e.g. under /usr/share/
DocImpact
Change-Id: I9292ca6226c8430b93565dedd45cc842742a23e2
|
|
|
|
| |
Change-Id: I0f6c5fc27b0bb2da553e9345a8ac4949ce46e685
|
|\ |
|
| |
| |
| |
| |
| |
| | |
Closes bug 1179007
Change-Id: I9d2a0190bb8dc31ea481909a4e0af3008aa976bf
|
|/
|
|
|
|
|
|
| |
- Removed unused imports
- Ignore wildcard and unused imports from core modules (and avoid
wildcard imports otherwise) to __init__ modules
Change-Id: Ie2e5f61ae37481f5d248788cfd83dc92ffddbd91
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This change consolidates eventlet code to a single module.
Importing eventlet drags along alot of other behavior changes
(such as replacing gettaddr with a version that doesn't support
IPv6), so it's safer if all the eventlet code is in one place so
it doesn't get imported when it's not needed, such as when
running under httpd.
blueprint extract-eventlet
Part of fix for bug 1178732
Change-Id: Ia557f8df7f856d7707a9d8c19800ddc36f1572ed
|
|
|
|
|
|
|
|
|
|
|
| |
This reverts commit 6219f94b3a1103a16bd5f16ed8ffdd41a85280e1.
This commit seems to cause keystone auth to hang when using
Keystone w/ Swift.
Fixes LP Bug #1178646.
Change-Id: Ieb94a29b3129847c84a02c8a526611f125f21ea0
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This change avoids eventlet's monkey-patching of DNS
resolution. eventlet's doesn't support IPv6, for example.
The way to avoid eventlet's DNS is to set an environment
variable. The trick is the environment variable needs to be set
before eventlet is imported.
A similar change was made in nova, so this is just copying
that code and technique to keystone.
This allows re-enabling the IPv6 tests, too.
Change-Id: I30524a1cebd43580d692fd88ef32be45e62758c5
|
|
|
|
|
|
|
|
|
|
| |
keystone-manage --version and keystone-all --version do
not show any version information. using the commons
version mechanism to set the version number
Fixes bug 1158783
Change-Id: Iade685a060cad8d9b3f2b80089d52faade43aba8
|
|
|
|
| |
Change-Id: I5cd454cc3c5bf5da9656c05e9a22385ffcd01147
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
That patch allows a developer to remotely run a pydev debugger and have the
keystone-all process connect back to it. Two command line options are
introduced:
--pydev-debug-host <host>
--pydev-debug-port <port>
both of the above options are required to enable this behavior.
This patch only enables this behavior when the service is started with
keystone-all. In the future parts of this patch can be used to enable
this behavior when running in Apache.
Change-Id: I92f99fa34112336a96e42e8261b7313f23ee994e
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The fact that a cfg opt register using register_opt() is available via
the command line is actually a bug (see bug #1082279).
Also, using the _cli_values attribute is clearly poking into private
implementation details.
Fix both issues by registering the opt using register_cli_opt() and
accessing its value the normal way.
Change-Id: If170dcd96daae5b4c3d7cdebed914df417c2209b
|
|
|
|
| |
Change-Id: Id94b76d30658e75a805301b1c30b1aa28138b823
|
|
|
|
|
|
|
|
|
|
|
|
| |
This works around the following eventlet bug:
https://bitbucket.org/which_linden/eventlet/issue/92
by using the green version of Popen if os has been
monkeypatched. It also has the side effect of making the ssl
calls not block the reactor for workers that use eventlet.
Change-Id: I1457237f52310f0536fbcdcaa42174b17e8edbf5
|
|
|
|
|
|
| |
Bug 1074257
Change-Id: I1372204c1e128aa664840e09b76fe979064d9efb
|
|
|
|
|
|
|
|
|
| |
Whitespace cleanup
Pep 8 line length fix
Bug 1039112
Change-Id: Ib11a6817f999802d90764404a5efbde33ce6e9eb
|
|
|
|
|
|
|
| |
Before: http://paste.openstack.org/raw/19365/
After: http://paste.openstack.org/raw/19364/
Change-Id: Iea2bc9a3448669031ed3e5578a01537635087289
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fixes bug 980037 again
Systemd notification should be sent in-process, otherwise systemd might
miss the subprocess sending notification.
See systemd bug https://bugzilla.redhat.com/show_bug.cgi?id=820448
Change-Id: Iccc51cf77af5598ee6b4c3cd69a12a7ee9fc2eb5
|
|/
|
|
|
|
| |
bug 1020569
Change-Id: I26c467dc6d96476f2a44b875bddf2cf3aec41859
|
|
|
|
|
|
| |
Implements blueprint cfg-global-object
Change-Id: Ic53b41dafa8666ce21f33697f7e8697f1e5cb0fd
|
|\ |
|
| |
| |
| |
| |
| |
| | |
Implemented bp/2-way-ssl using eventlet-based SSL.
Change-Id: I5aeb622aded13b406e01c78a2d8c245543306180
|
|\ \
| |/
|/| |
|
| |
| |
| |
| |
| |
| | |
Fixes bug 928564.
Change-Id: I5ba157244d5ba9a018244141c27806db2b82f1e8
|
|/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes bug 980037
Service managers starting keystone-all have no way of being notified
when the service is ready to accept connections. This commit allows
a configurable command to be called when we are ready e.g.
for systemd setting the statup type of a service unit to "notify" and setting
onready = systemd-notify --ready
in keystone.conf, would notify a waiting systemd that we are ready to
serve
In an automated envirnment (e.g. puppet) this will allow the startup of
the keystone-all service (with systemctl for example) directly followed
by usage of the keystone client without the need for a sleep (or retry)
while we are waiting for the keystone service to be ready.
Change-Id: I3f7aafe9837be60a0f35cae1a7db892f6851cc47
|
|
|
|
|
|
| |
- Fixes bug 966643.
Change-Id: I1e2a4d7e1765e4742bd501c4d381d94b6b7585e6
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
we shouldn't be using options at all, that was a leftover piece of code
from a long time ago.
invalidates bug 949373
Change-Id: I29fcbd5f641464bda985900172b55bca45843f81
|
|/
|
|
|
|
| |
fixes bug 942793
Change-Id: I044a56c1eedae2ecef04dd3aa60b91414b7abc14
|
|
|
|
|
|
| |
* fixes bug 945868
Change-Id: Ib33dc9ad1878a9215c1a1ab10814fa7d0905cbdb
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes bug #940010
Didn't fix SQLAlchemy queries.
Module keystone/middleware/auth_token.py
is fixed in https://review.openstack.org/#change,4385
Change-Id: Idaad992b5ef493407a23f0f77110ed2ab3f2452e
|
|
|
|
|
|
| |
We shouldn't be looking for keystone-all/__init__.py
Change-Id: I833342cbc3d0fff3168d31d72d1c7e8b029e32fd
|
|
|
|
| |
Signed-off-by: Chuck Short <chuck.short@canonical.com>
|
|
|
|
|
|
| |
in LP: #910484.
Signed-off-by: Chuck Short <chuck.short@canonical.com>
|
|
|
|
|
|
| |
the binaries dont conflict with python-keystoneclient.
Signed-off-by: Chuck Short <chuck.short@canonical.com>
|
|
|
|
| |
Change-Id: I12e304c567b92178e193c60599c3be606cc70d38
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
prints available commands and config values when no arguments are given
prints available subcommands when command is given but no subocmmand is
|
| |
|
| |
|
| |
|