keystone charm should expose chase_referrals setting
Bug #1663116 reported by
Brad Marshall
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Keystone LDAP integration |
Triaged
|
Wishlist
|
Unassigned | ||
| keystone (Juju Charms Collection) |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
To assist in making LDAP more usable, the keystone charm should expose the chase_referrals configuration as a juju config setting. This is particularly useful when using Active Directory domains as an authentication source.
This setting can be either a boolean, or unset to use the systems default behaviour.
Revision history for this message
| Brad Marshall (brad-marshall) wrote | #1 |
Revision history for this message
| James Page (james-page) wrote | #2 |
Revision history for this message
| James Page (james-page) wrote | #3 |
| Changed in charm-keystone-ldap: | |
| status: | New → Triaged |
| importance: | Undecided → Wishlist |
| Changed in keystone (Juju Charms Collection): | |
| status: | New → Invalid |
Revision history for this message
| Brad Marshall (brad-marshall) wrote | #4 |
To post a comment you must log in.
Note our use case for this is for use with multiple ldap domains, I believe there's work to create a subordinate charm in planning for this. I did notice we can use the ldap-config-flags option to do it, but thats only if the identity_backend is set to ldap, which is not the case for us.