| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This commit was bulk generated and pushed by the OpenDev sysadmins
as a part of the Git hosting and code review systems migration
detailed in these mailing list posts:
http://lists.openstack.org/pipermail/openstack-discuss/2019-March/003603.html
http://lists.openstack.org/pipermail/openstack-discuss/2019-April/004920.html
Attempts have been made to correct repository namespaces and
hostnames based on simple pattern matching, but it's possible some
were updated incorrectly or missed entirely. Please reach out to us
via the contact information listed at https://opendev.org/ with any
questions you may have.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is a mechanically generated patch to complete step 1 of moving
the zuul job settings out of project-config and into each project
repository.
Because there will be a separate patch on each branch, the branch
specifiers for branch-specific jobs have been removed.
Because this patch is generated by a script, there may be some
cosmetic changes to the layout of the YAML file(s) as the contents are
normalized.
See the python3-first goal document for details:
https://governance.openstack.org/tc/goals/stein/python3-first.html
* For docs job
The older branches did not work with the existing documentation job.
The fix may require backporting changes to remove tox_install.sh, or
other changes that have been made in newer stable branches but not
backported all the way. Because the new documentation job runs through
tox we may be able to use that in the older branches, as an alternative.
Change-Id: I311741b1b7b2617e304b7fb4568e2a9b1d3238b1
Story: #2002586
Task: #24299
|
|
|
|
|
|
|
| |
Zuul no longer requires the project-name for in-repo configuration.
Omitting it makes forking or renaming projects easier.
Change-Id: Ie7869e723f56fe6b8af1b3b90704d1982412e28d
|
|
|
|
| |
Change-Id: Icd4751fc505e85215eb9cda917199f46630bab4f
|
|
|
|
|
|
|
| |
For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html
Change-Id: Ibe8dfc36f9a34eec8b0e9f097852a29ddb87e88d
|
|
|
|
|
| |
Change-Id: I9e8d838315d521874e6f92922a9f488ee7029dbc
(cherry picked from commit a0af708a49518937eab3656e7a4302687508a2ce)
|
|
|
|
| |
Change-Id: Iff28dbe0a0eb28a6ab27eabcf6613183abcece92
|
|
|
|
| |
Change-Id: I14df58e19a950fd3ff4afd0436f9ee34572376a8
|
|
|
|
| |
Change-Id: I5d7b30c6908a17a4659d11f0b7c77df961a412a8
|
|\ |
|
| |
| |
| |
| | |
Change-Id: I8014815e7efc35f4b6e46fa565e300f44bb17719
|
|/
|
|
|
|
|
| |
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I552579b826580750799e03b7ae52ebbb0e61ad97
|
|
|
|
|
|
|
| |
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ibd4e27867dd7228e2583ea9958f3e2fca5eaa109
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
As requested[1], this patch adds info logging when an unscoped token
cannot be scoped to a given project or domain returned by list_projects
or list_domains.
[1] https://review.openstack.org/#/c/389337/
Change-Id: I0cb4b7450528cd1e056b8a2af4f820a17914209c
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I4a5940a3045c6057a104239bf605092bc5f93983
|
|/ /
| |
| |
| |
| |
| |
| |
| | |
The project domain ID is needed if a client needs to rescope a token
using the Identity V3 endpoint, so make it available.
Change-Id: I18a9d42906cb2116903600d47880ebdfff1e1ef9
Partial-bug: #1660436
|
|/
|
|
|
|
|
| |
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I026ee5762d3705025d88861967dfe41533504ca4
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
When a federated user logs in, openstack_auth receives an unscoped
token and no user_domain_name parameter. Currently, if the federated
user has a role in one or more domains, but no roles in any projects,
openstack_auth prevents authorization and denies the user's login with
the error "You are not authorized for any projects or domains." This is
a problem because first, it's inaccurate, as the user is authorized for
at least one domain, and second, a keystone administrator may want to
give federated users access to a domain without any projects in it, for
example so delegate the creation of projects to the federated users
themselves. This patch allows federated users without project roles to
log in by looking up domains as well as projects when attempting to
scope the token. This lookup is skipped if the domain was passed as
part of the request.
This patch also slightly restructures the OpenStackAuthTestsWebSSO
and OpenStackAuthTestsV3 tests because mox needs to simulate only one instance
of the plugin but two instances of the client objects for every call to
authenticate().
Closes-bug: #1649101
Change-Id: I151218ff28c0728898ed5315d63dd8122ce3b166
|
|\ \ |
|
| |/
| |
| |
| | |
Change-Id: Ie68fd51c43b901d2b1a951848db0de128efc3328
|
|/
|
|
|
|
|
| |
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Iffa99d3abc3b4b1510fdb7c2c9a935e330e65e04
|
|
|
|
|
|
|
|
|
|
|
|
| |
Previously, the get_domain_scoped_auth plugin method caught any
exceptions found while trying to scope a token and logged the error
without addressing it. This was hiding an error that was occuring in
the unit tests, which was that some of the plugin calls were not being
mocked properly. This patch narrows down the exception handling to the
same exceptions handled in the project scoping case and adds the
necessary mocks to the tests.
Change-Id: I80a085ca731391b3f54a5ef999c92ab8ba3e69a0
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This adds auth functionality to the Auth Drop down.
A new K2K django auth plugin has been added (With the intent
to do K2K at Login Time). Session variables have been
added so horizon can display the names of the Keystone Providers.
An endpoint was also added that allows the user to
switch keystone providers.
Change-Id: I75b1a10a3b40b5544b60f6fdc060e0070c585977
Implements: blueprint k2k-horizon
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The check() method was broken during a refactor and now only
checks the first result in the list and then returns that result.
This patch restores the AND functionality of check and only short
circuits on a failed result.
Closes-Bug: #1643082
Change-Id: I7d976299de2a35b81ced29d2c3f265da62f20eff
|
| |/
|/|
| |
| | |
Change-Id: I3abd93decc5d41b99af76722d49de559d0e035b3
|
| |
| |
| |
| |
| |
| |
| | |
Moves the project and domain logic into their own functions
inside the plugin object.
Change-Id: I3aa026364443220c9b3fa38ec306fed4d9e878cc
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Adding constraints support to libraries is slightly more complex than
services as the libraries themselves are listed in upper-constraints.txt
which leads to errors that you can't install a specific version and a
constrained version.
This change adds constraints support by also adding a helper script to
edit the constraints to remove django_openstack_auth.
Change-Id: Ibb739fe4385caa3dd9f96f0708b7b3830a915d07
|
|\ \ \
| |/ /
|/| | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Discovering REMOTE_IP using headers variables and displaing on console
log.
The messages will be:
"Login successful for user "%(username)s", remote address %(remote_ip)s."
and
"Login failed for user "%(username)s", remote address %(remote_ip)s."
This patch was tested behind haproxy and nginx reverse proxy.
To set variable that want to use, must inform using settings
SECURE_PROXY_ADDR_HEADER variable. Whitout this setting the remote ip
will use REMOTE_ADDR header variable.
Change-Id: I977be6cb1d029048b9862cac4b6596fc2e2b3431
Closes-Bug: #1461266
|
|\ \ \ |
|
| | | |
| | | |
| | | |
| | | | |
Change-Id: I47c6828dde3f5030325793c4a7e9aa6f22c06144
|
|/ / /
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
python3.0 has disable LOG.warn.
remove usages.
Change-Id: Iee087af55dc4103d8cd54f83bfb2291a52be050e
Closes-Bug: #1650248
|
| | |
| | |
| | |
| | | |
Change-Id: Ia761f147d011e4b68d315812e6b5c2ad03a94c37
|
| |/
|/|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This patch adds the team's and repository's badges to the README file.
The motivation behind this is to communicate the project status and
features at first glance.
For more information about this effort, please read this email thread:
http://lists.openstack.org/pipermail/openstack-dev/2016-October/105562.html
To see an example of how this would look like check:
b'https://gist.github.com/cd17bf5b90c4ac235870b558ba7f5cd0\n'
Change-Id: I1668ab8ec2b3f41dd9d21421a6069884edf8bb14
|
| |
| |
| |
| | |
Change-Id: I5352df5d52bb6a743c60b0d812d17f851666e807
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Keysonte is changing the nature of tokens, timeouts, and long
running tasks. In addition, horizon can also cause issues where
a user starts a long running tasks, logs out, and then the token
fails authenticaion. Just removing this problematic logic.
https://blueprints.launchpad.net/keystone/+spec/session-extendable-tokens
Closes-Bug: #1637460
Change-Id: I5eda08e95d8df72ba601181f02a72de37c5393fd
|
|/ /
| |
| |
| | |
Change-Id: I84ba6ee0288f33c4e9ddc20c18e3f4c887909b25
|
| |
| |
| |
| | |
Change-Id: Ia1f1d8a5722f8221211786e11f4b9afcc6daca79
|
|\ \ |
|
| | |
| | |
| | |
| | | |
Change-Id: I978f11d6d9d924a9cbcbf3636ea377fef97b6fbb
|
|\ \ \
| |/ /
|/| | |
|
| | |
| | |
| | |
| | |
| | |
| | | |
Use assertIn(A, B) instead of assertTrue(A in B)
Change-Id: Iafdb29ffd21b10b4f31a0732e2104219c0ff8bea
|
| | |
| | |
| | |
| | | |
Change-Id: I2ab11b0642823396178fc8b2e1ab2f2781fb1693
|