This patch set adds the pool timeout to the LDAP configuration sample.
Also, puts the LDAP pool timeout to a sensible 15 seconds rather than
-1 which can cause keystone to hang due to potential LDAP instability
or unavailability.
Change-Id: I15d6b6d93811bb560e4db26490b05024617ec665
Signed-off-by: Tin Lam <tin@irrational.io>
Some of the LDAP configurations were deprecated in N- or O-release have
been since removed, namely the option to allow for write operations in
LDAP. This is causing some issue with more recent releases of keystone
as discovered in [0]. This patch set removes them from the example to
avoid the errors for more recent releases without impacting N- or
O-releases as they were already deprecated at that point.
Also, this adds in a configuration sample that bootstraps an LDAP
domain by default.
[0] https://review.openstack.org/#/c/561751/
Change-Id: Ie8f23cd61dad1860a41422264945c169f0488729
Signed-off-by: Tin Lam <tin@irrational.io>
This patch set adds a nv-gating with an OpenLDAP server with some sample
data loaded for development or testing use using a bootstrap job.
This patch set also adds confirming authentication works using domain-
specific configuration for keystone.
Consolidated change from: https://review.openstack.org/#/c/552976/
Co-Authored-By: Gage Hugo <gagehugo@gmail.com>
Change-Id: I1aeccffc018d0fcefc8e2b15a4ac6b83cb2be8b6
Signed-off-by: Tin Lam <tin@irrational.io>
