]> review.fuel-infra Code Review - openstack-build/heat-build.git/commit
Code Review / openstack-build / heat-build.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: f83b7ea) | patch
Subclass keystone middleware to set headers
authorSteve Baker <sbaker@redhat.com>
Mon, 8 Apr 2013 03:35:55 +0000 (15:35 +1200)
committerSteve Baker <sbaker@redhat.com>
Mon, 22 Apr 2013 22:28:58 +0000 (10:28 +1200)
commitcfda18b43e2e5782e5595e54f4a48f30b860e5dd
treebd31f4f1e54ba81de2e53e225ce3e400c6b85985tree | snapshot
parentf83b7eaf0940791002b8834890d7d903ec11a77dcommit | diff
Subclass keystone middleware to set headers

Replace old forked auth_token with a subclass
of keystoneclient middleware.

The advantages of moving to keystoneclient middleware:
- can use v3 (or v2) keystone api
- PKI tokens
- token revocation

The subclass sets the following headers to be consumed by our
request context filter:
- X-Admin-User
- X-Admin-Pass
- X-Admin-Tenant-Name
- X-Auth-Url

The need to override _build_user_headers should be a short-term thing,
X-Admin-* isn't actually used currently, and there are a few options
that need to be discussed for getting X-Auth-Url to the engine.

Change-Id: Iacc5046fbf559724a4ae0bd6091d662e23d65544
Blueprint: keystone-middleware
etc/heat/heat-api-cfn-paste.ini diff | blob | history
etc/heat/heat-api-cloudwatch-paste.ini diff | blob | history
etc/heat/heat-api-paste.ini diff | blob | history
heat/common/auth_token.py diff | blob | history