For those who may be following along and are not familiar with what we mean
by federated auto-provisioning [0].
[0]
https://docs.openstack.org/keystone/latest/advanced-topics/federation/federated_identity.html#auto-provisioning
On Wed, Sep 26, 2018 at 9:06 AM Morgan Fainberg
wrote:
> This
Hey Colleen,
>This sounds like it is based on the customizations done at Oath, which to
my recollection did not use the actual federation implementation in
keystone due to its reliance on Athenz (I think?) as an identity manager.
Something similar can be accomplished in standard keystone with the
hi,
thanks for sharing this!
At TripleO we're looking at implementing in Stein deployment of at least
1 regional DC and N edge zones. More comments below.
On 9/25/18 11:21 AM, Ildiko Vancsa wrote:
> Hi,
>
> Hereby I would like to give you a short summary on the discussions
that happened at the
This discussion was also not about user assigned IDs, but predictable IDs
with the auto provisioning. We still want it to be something keystone
controls (locally). It might be hash domain ID and value from assertion (
similar.to the LDAP user ID generator). As long as within an environment,
the
On 09/26/2018 05:10 AM, Colleen Murphy wrote:
Thanks for the summary, Ildiko. I have some questions inline.
On Tue, Sep 25, 2018, at 11:23 AM, Ildiko Vancsa wrote:
We agreed to prefer federation for Keystone and came up with two work
items to cover missing functionality:
* Keystone to
Thanks for the summary, Ildiko. I have some questions inline.
On Tue, Sep 25, 2018, at 11:23 AM, Ildiko Vancsa wrote:
>
> We agreed to prefer federation for Keystone and came up with two work
> items to cover missing functionality:
>
> * Keystone to trust a token from an ID Provider master
Hi,
Hereby I would like to give you a short summary on the discussions that
happened at the PTG in the area of edge.
The Edge Computing Group sessions took place on Tuesday where our main activity
was to draw an overall architecture diagram to capture the basic setup and
requirements of edge
