SAML protocol must always be called 'saml2'
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Unassigned | ||
python-keystoneclient |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
In the v3unscopedsaml plugin in python-
Therefore every auth token url should be of the form http://
Short term fix: modify keystone's doc on federation so that administrators always create protocols called 'saml2'. This makes sense anyway, since SAML2 is used to authenticate and authorize the users.
Long term fix: allow the protocol name to be an argument when instantiating the plugin.
Changed in keystone: | |
assignee: | nobody → Matthieu Huin (mhu-s) |
Changed in keystone: | |
importance: | Undecided → Medium |
tags: | added: federation |
tags: | added: documentation |
Changed in python-keystoneclient: | |
importance: | Undecided → Wishlist |
status: | New → Triaged |
Changed in python-keystoneclient: | |
assignee: | nobody → Matthieu Huin (mhu-s) |
Fix proposed to branch: master /review. openstack. org/128093
Review: https:/