keystoneauth

  1. Bug #1689424
  2. Comment #2

Comment 2 for bug 1689424

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystoneauth (master)

Reviewed: https://review.openstack.org/463432
Committed: https://git.openstack.org/cgit/openstack/keystoneauth/commit/?id=4ca1a1f0280ef0e02ac1c4df43834d007264ada3
Submitter: Jenkins
Branch: master

commit 4ca1a1f0280ef0e02ac1c4df43834d007264ada3
Author: Blake Covarrubias <email address hidden>
Date: Sat Apr 29 17:54:20 2017 -0700

    Allow setting EndpointReference in ADFSPassword

    The ADFSPassword plugin currently sets the WS-Policy 'AppliesTo'
    EndpointReference Address in the WS-Trust RequestSecurityToken message
    to the value specified in the ‘service-provider-endpoint’ option. This
    may not be desirable if the Service Provider's SAML entity ID differs
    from the WS-Federation Passive Endpoint (i.e. service provider endpoint)
    consuming the WS-Trust RequestSecurityTokenResponse.

    This commit introduces the ability to specify the EndpointReference used
    in the RequestSecurityToken message via the 'service-provider-entity-id'
    option. If omitted, the EndpointReference defaults to the value provided
    in the ‘service-provider-endpoint' option to preserve backward
    compatibility.

    Change-Id: I842427232db79d628dc29f5a1dcf68e011667dfa
    Closes-Bug: #1689424