Configure keystone for federation using openID connect

asked 2017-05-22 05:53:56 -0500

sanjana gravatar image

I want to use OpenID connect for federated keystone. Is there any guide or link that i can follow? I have installed openstack using devstack on ubuntu. Can anyone please suggest the files that i have to modify

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted

answered 2017-05-22 06:58:43 -0500

updated 2017-05-22 06:59:20 -0500

Start here:

Disclaimer: I have never tried it; I just know my way around documentation.

edit flag offensive delete link more


Thanks a lot for that link :) But i have some problems with login. I followed these steps, but i get authorization error. I am trying to figure out the mistake

sanjana gravatar imagesanjana ( 2017-05-23 04:12:35 -0500 )edit

@Bernd Bausch With openIDconnect, i initially need to know the users client ID and secret key value right? Without this i will not be able to configure OIDC. What's the point of external auth then if i need to store ID and secret key before hand? I am confused with the concept. could you please help

sanjana gravatar imagesanjana ( 2017-05-30 05:38:35 -0500 )edit

@Bernd Bausch i understand that you havent tried it. But is it possible for you to tell what is the point in using it, if i have to know user's google Client ID and secret key in advance.

sanjana gravatar imagesanjana ( 2017-05-30 05:43:10 -0500 )edit

I am not the right person to ask. OpenStack just uses the Apache module mod_auth_openid, and perhaps you find more information at the mod_auth_openid git repo

Bernd Bausch gravatar imageBernd Bausch ( 2017-05-30 11:40:41 -0500 )edit

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2017-05-22 05:53:56 -0500

Seen: 311 times

Last updated: May 22 '17