Mistral

Keycloak auth has no ssl support

Bug #1712749 reported by Mike Fedosin on 2017-08-24

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Mistral	Fix Released	Medium	Mike Fedosin	Mistral pike-rc2 "rc2"

Bug Description

Currently keycload auth middleware cannot communicate with the server by https protocol and there is no possibility to specify certificates and key files.

Tags:

Mike Fedosin (mfedosin) on 2017-08-24

Changed in mistral:
assignee:	nobody → Mike Fedosin (mfedosin)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-08-24: Fix proposed to mistral (master)

Fix proposed to branch: master
Review: https://review.openstack.org/497120

Changed in mistral:
status:	New → In Progress

Renat Akhmerov (rakhmerov) on 2017-08-29

Changed in mistral:
milestone:	none → pike-rc2
importance:	Undecided → Medium

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-08-30: Fix merged to mistral (master)

Reviewed: https://review.openstack.org/497120
Committed: https://git.openstack.org/cgit/openstack/mistral/commit/?id=1c98030a30d1e58a8a3d58d9760aadd4defb51bc
Submitter: Jenkins
Branch: master

commit 1c98030a30d1e58a8a3d58d9760aadd4defb51bc
Author: Mike Fedosin <email address hidden>
Date: Thu Aug 24 10:43:48 2017 +0300

Add ssl support for keycloak auth middleware

    This patch enables ssl support for keycloak middleware. It adds 3
    new config options: 'certfile', 'keyfile' and 'cafile' and substitues
    their values to the request to keycloak server.

Change-Id: Id8a771af373cd9d1e198142c21957622f9d0232c
Closes-bug: #1712749

Changed in mistral:
status:	In Progress → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-09-05: Fix proposed to mistral (stable/pike)

Fix proposed to branch: stable/pike
Review: https://review.openstack.org/500709

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-09-05: Fix merged to mistral (stable/pike)

Reviewed: https://review.openstack.org/500709
Committed: https://git.openstack.org/cgit/openstack/mistral/commit/?id=6e720669598be09acdae72e54a891a068fd64c5e
Submitter: Jenkins
Branch: stable/pike

commit 6e720669598be09acdae72e54a891a068fd64c5e
Author: Mike Fedosin <email address hidden>
Date: Thu Aug 24 10:43:48 2017 +0300

Add ssl support for keycloak auth middleware

    This patch enables ssl support for keycloak middleware. It adds 3
    new config options: 'certfile', 'keyfile' and 'cafile' and substitues
    their values to the request to keycloak server.

    Change-Id: Id8a771af373cd9d1e198142c21957622f9d0232c
    Closes-bug: #1712749
    (cherry picked from commit 1c98030a30d1e58a8a3d58d9760aadd4defb51bc)