Re: [openstack-dev] Keystone and Multiple Identity Sources

On 12/09/2013 16:55, Dolph Mathews wrote: On Thu, Sep 12, 2013 at 3:15 AM, David Chadwick mailto:d.w.chadw...@kent.ac.uk>> wrote: On 11/09/2013 22:05, Adam Young wrote: What's the use case for including providers in the service catalog? i.e. why do

Re: [openstack-dev] Keystone and Multiple Identity Sources

On Thu, Sep 12, 2013 at 3:15 AM, David Chadwick wrote: > > > On 11/09/2013 22:05, Adam Young wrote: > >> >>> What's the use case for including providers in the service catalog? >>> i.e. why do Identity API clients need to be aware of the Identity >>> Providers? >>> >> In the federation protocol AP

Re: [openstack-dev] Keystone and Multiple Identity Sources

On 11/09/2013 22:05, Adam Young wrote: What's the use case for including providers in the service catalog? i.e. why do Identity API clients need to be aware of the Identity Providers? In the federation protocol API, the user can specify the IdP that they are using. Keystone needs to know what

Re: [openstack-dev] Keystone and Multiple Identity Sources

On 09/11/2013 02:05 PM, Dolph Mathews wrote: On Wed, Sep 11, 2013 at 12:31 PM, David Chadwick mailto:d.w.chadw...@kent.ac.uk>> wrote: Further supplementary information to Adam's email below, is that there are already one further federation protocol profiles that has been published

Re: [openstack-dev] Keystone and Multiple Identity Sources

On 09/11/2013 12:35 PM, Dolph Mathews wrote: On Wed, Sep 11, 2013 at 10:25 AM, Adam Young > wrote: David Chadwick wrote up an in depth API extension for Federation: https://review.openstack.org/#/c/39499 There is an abfab API proposal as well: https://

Re: [openstack-dev] Keystone and Multiple Identity Sources

bject: [openstack-dev] Keystone and Multiple Identity Sources David Chadwick wrote up an in depth API extension for Federation: https://review.openstack.org/#/c/39499 There is an abfab API proposal as well:

Re: [openstack-dev] Keystone and Multiple Identity Sources

On Wed, Sep 11, 2013 at 12:31 PM, David Chadwick wrote: > Further supplementary information to Adam's email below, is that there are > already one further federation protocol profiles that has been published: > for an external Keystone acting as an IdP at > https://review.openstack.org/#**/c/42107

Re: [openstack-dev] Keystone and Multiple Identity Sources

On 11/09/2013 19:05, Dolph Mathews wrote: On Wed, Sep 11, 2013 at 12:31 PM, David Chadwick mailto:d.w.chadw...@kent.ac.uk>> wrote: Further supplementary information to Adam's email below, is that there are already one further federation protocol profiles that has been published:

Re: [openstack-dev] Keystone and Multiple Identity Sources

hanks, Brad Brad Topol, Ph.D. IBM Distinguished Engineer OpenStack (919) 543-0646 Internet: bto...@us.ibm.com Assistant: Cindy Willman (919) 268-5296 From: Adam Young To: OpenStack Development Mailing List Date: 09/11/2013 11:28 AM Subject:[openstack-dev] Keystone and Mul

Re: [openstack-dev] Keystone and Multiple Identity Sources

Further supplementary information to Adam's email below, is that there are already one further federation protocol profiles that has been published: for an external Keystone acting as an IdP at https://review.openstack.org/#/c/42107/ and another for SAML has been prepared and is ready for publi

Re: [openstack-dev] Keystone and Multiple Identity Sources

On Wed, Sep 11, 2013 at 10:25 AM, Adam Young wrote: > David Chadwick wrote up an in depth API extension for Federation: > https://review.openstack.org/#**/c/39499 > There is an abfab API proposal as well: https://review.openstack.org/#** > /c/42221/

[openstack-dev] Keystone and Multiple Identity Sources

David Chadwick wrote up an in depth API extension for Federation: https://review.openstack.org/#/c/39499 There is an abfab API proposal as well: https://review.openstack.org/#/c/42221/ After discussing this for a while, it dawned on me that Federation should not be something bolted on to Keyst