diff options
author | liyuenan <liyuenan@huawei.com> | 2016-10-26 13:55:23 +0800 |
---|---|---|
committer | liyuenan <liyuenan@huawei.com> | 2016-11-09 14:11:48 +0800 |
commit | 14c337344987857a4648ff08365b8b128a553ef8 (patch) | |
tree | c277582d07b1a9ee65780a49db7071d3c6fb1978 /deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates | |
parent | dbbb61368932e724f8aae720e1de53ae5c4eebf3 (diff) |
Update the API version for Openstack Newton
Use the "keystone-manage bootstrap" command to instead of admin_token.
Because the admin_token is treated as a "shared secret" that can be used
to bootstrap Keystone through the API. This "token" does not represent a
user (it has no identity), and carries no explicit authorization (it
effectively bypasses most authorization checks).
Use the API v3 to instead of API v2.0. Identity API v3 was established to
introduce namespacing for users and projects by using "domains" as a
higher-level container for more flexible identity management and fixed a
security issue in the v2.0 API (bearer tokens appearing in URLs).
JIRA: COMPASS-491
Change-Id: I56182c14b761728c3492b9dd2b05c3b57aa5f35f
Signed-off-by: liyuenan <liyuenan@huawei.com>
Diffstat (limited to 'deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates')
-rw-r--r-- | deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates/aodh.conf.j2 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates/aodh.conf.j2 b/deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates/aodh.conf.j2 index d4d232be..752dd0f0 100644 --- a/deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates/aodh.conf.j2 +++ b/deploy/adapters/ansible/openstack_mitaka/roles/aodh/templates/aodh.conf.j2 @@ -21,7 +21,7 @@ rabbit_password = {{ RABBIT_PASS }} connection = mysql://aodh:{{ AODH_DBPASS }}@{{ db_host }}/aodh [keystone_authtoken] -auth_uri = http://{{ internal_vip.ip }}:5000 +auth_uri = http://{{ internal_vip.ip }}:5000/v2.0 auth_url = http://{{ internal_vip.ip }}:35357 identity_uri = http://{{ internal_vip.ip }}:35357 auth_plugin = password |