From efbf120c222ee0b35bae396de9e9bbf1c7da783d Mon Sep 17 00:00:00 2001
From: Juan Antonio Osorio Robles <jaosorior@redhat.com>
Date: Thu, 16 Mar 2017 14:14:09 +0200
Subject: docker/keystone: add metadata_settings to output

This is used for the TLS-everywhere bits. It will be taken into account
by a metadata hook that outputs relevant entries for the nova-metadata
service; and subsequently kerberos principals will be created from
these.

Subsequent patches will add support for TLS in the internal network for
the containerized keystone.

Change-Id: Ic747ad9c8d6e76c8c16e347c1cdcabc899dd9f9a
---
 docker/services/keystone.yaml | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'docker/services/keystone.yaml')

diff --git a/docker/services/keystone.yaml b/docker/services/keystone.yaml
index 3f8baef7..656f3348 100644
--- a/docker/services/keystone.yaml
+++ b/docker/services/keystone.yaml
@@ -176,3 +176,5 @@ outputs:
         - name: Stop and disable keystone service (running under httpd)
           tags: step2
           service: name=httpd state=stopped enabled=no
+      metadata_settings:
+        get_attr: [KeystoneBase, role_data, metadata_settings]
-- 
cgit 1.2.3-korg