[OpenStack-Infra] Groups portal SSL certificates
Hi All, I want to replace the groups portal authentication mechanism from openid to oauth2, because the actual openid implementation not supports retrieval of profile picture urls. The side-effect of the migration that OpenStackID enforce using SSL for oauth2 communication. So we need to issue an x509 ssl cert for groups.openstack.org and groups-dev.openstack.org domains, and need to add SSL based vhosts to Apache webserver. I'll prepare the required apache system-config changes. I've added a blueprint for this at openstack-ci launchpad: https://blueprints.launchpad.net/openstack-ci/+spec/groups-oauth2-authentication Brgds, Marton Kiss ___ OpenStack-Infra mailing list OpenStack-Infra@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-infra
Re: [OpenStack-Infra] Groups portal SSL certificates
On 2014-11-18 16:22:13 +0100 (+0100), Marton Kiss wrote: [...] we need to issue an x509 ssl cert for groups.openstack.org and groups-dev.openstack.org domains [...] As discussed in IRC, I'll go ahead and order the signed certificate for groups.openstack.org, but groups-dev should be configured to communicate with openstackid-dev using a self-signed cert instead. This makes it easier for downstream consumers and developers to try it out themselves, and also avoids any impression that the server is for production use. -- Jeremy Stanley signature.asc Description: Digital signature ___ OpenStack-Infra mailing list OpenStack-Infra@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-infra