[RFE] Missing keystone federated authentication options
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla-ansible |
Confirmed
|
Wishlist
|
Gaël THEROND |
Bug Description
**Bug Report**
What happened:
As reported by this blueprint: https:/
Keystone support for federated authentication mechanisms, would it be with keystone as an IDp or using external IDp such as OpenID Connect or SAML2 compatible authentication endpoint (Most probably a Microsoft STS endpoint (ADFS) or a keycloack solution).
Today, if an operator want to implement keystone federated authentication he needs to add up a lot of custom configuration and override on keystone role.
How to fix:
Implement natively to kolla-ansible federated identity option.
How to reproduce it (minimal and precise):
Try to deploy a federated authentication using keystone (OIDC/SAML2).
**Environment**:
* Kolla-Ansible version: ALL
Changed in kolla-ansible: | |
status: | New → In Progress |
assignee: | nobody → Gaël THEROND (fl1nt) |
Changed in kolla-ansible: | |
importance: | Undecided → Wishlist |
Changed in kolla-ansible: | |
status: | In Progress → New |
Changed in kolla-ansible: | |
status: | New → Confirmed |
summary: |
- Missing keystone federated authentication options + [RFE] Missing keystone federated authentication options |
I don't understand what this bug is for. The linked blueprint covers federated keystone, initially with openID.