Open Stack

On Sat, Aug 25, 2012 at 8:19 PM, Joseph Heck <heckj at mac.com> wrote:

> Hey Doug,
>
> Yes, that's exactly what we're talking about. WIth the recent changes to
> support PKI support, it's including more links into keystone core code, but
> we're hearing the message loud and clear that it would be nice to have that
> capable of being separately packaged (so that all of Keystone isn't
> required to be installed), and that clearly we're already talking about it
> being a potential candidate to a future openstack-common release.
>

Good. We are going to want to use that for authentication in Ceilometer,
and I'm also considering using it in some non-OpenStack projects where I
need a service catalog and authentication system.

Doug


>
> -joe
>
> On Aug 25, 2012, at 12:27 PM, Doug Hellmann <doug.hellmann at dreamhost.com>
> wrote:
>
> On Mon, Aug 20, 2012 at 4:48 PM, Joseph Heck <heckj at me.com> wrote:
>
>> Broadening the scope for discussion -
>>
>> This started as http://markmail.org/thread/7y4xxqn7vxbgj4qo <-- asking
>> about moving auth_token into openstack-common. I don't think Mark saw that
>> thread, and it was specific to a piece of keystone code, but a more general
>> question seemed useful for discussion:
>>
>>
>> Begin forwarded message:
>>
>> *From: *Mark McLoughlin <markmc at redhat.com>
>> *Subject: **Re: openstack-common question*
>> *Date: *August 20, 2012 1:45:18 PM PDT
>> *To: *Joseph Heck <heckj at me.com>
>> *Reply-To: *Mark McLoughlin <markmc at redhat.com>
>>
>> On Mon, 2012-08-20 at 13:41 -0700, Joseph Heck wrote:
>>
>> Hey Mark!
>>
>> Question that came up from earlier this weekend - what's your line in
>> the sand for when something should be included in openstack-common?
>>
>> The question posed earlier was to move some of the auth_token pieces
>> into openstack common - but I think the driving force is that folks
>> didn't want to install all of keystone just to get the auth_token code
>> that goes into nova, glance, quantum, etc. paste files.
>>
>> I don't think it's ready or that we want to do that right now, but I
>> figured I'd ask to see where you're trying to draw the line for
>> inclusion.
>>
>>
>> Basically, if it might otherwise be copied and pasted between multiple
>> OpenStack projects, it probably should live in openstack-common.
>>
>> Seems like something worth discussing on openstack-dev, though. Care to
>> re-post there?
>>
>> Are "the auth_token pieces" the same as the Keystone middleware? If so,
> that seems like a good candidate for a stand-alone package. If we have to
> pass it through common before we can release it that way, so be it, but it
> might be simpler for the keystone team to just split it out and release it
> directly.
>
> Doug
>
> _______________________________________________
> OpenStack-dev mailing list
> OpenStack-dev at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
>
>
> _______________________________________________
> OpenStack-dev mailing list
> OpenStack-dev at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20120827/f882780f/attachment-0001.html>