websso should compare remote_id_attribute to remote_id of IdP
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
High
|
Nathan Kinder |
Bug Description
When using the websso feature in keystone, the identity provider is looked up based on the value of the 'remote_
When hitting http://
{"error": {"message": "Could not find Identity Provider: https:/
This message contains the value of my 'remote_
[root@rdo ~(keystone_
+------
| Field | Value |
+------
| description | None |
| enabled | True |
| id | ipsilon |
| remote_id | https:/
+------
You can see that the remote_id matches the value that my assertion contains.
My keystone.conf has this:
remote_
trusted_dashboard = http://
Keystone is currently looking up the identity provider by trying to match the value from the 'remote_
Changed in keystone: | |
importance: | Undecided → High |
status: | In Progress → Confirmed |
Changed in keystone: | |
milestone: | none → kilo-rc1 |
Changed in keystone: | |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | kilo-rc1 → 2015.1.0 |
Fix proposed to branch: master /review. openstack. org/166391
Review: https:/