[Openstack] Where does Keystone middleware for Swift belong?
Joshua Harlow
harlowja at yahoo-inc.com
Wed Apr 11 22:01:10 UTC 2012
This also seems to make sense for other items in that directory /middleware?
Should the EC2/S3 stuff be in nova?
On 4/11/12 2:07 PM, "Maru Newby" <mnewby at internap.com> wrote:
The Keystone repo currently contains the following Swift-specific wsgi middleware modules:
https://github.com/openstack/keystone/blob/master/keystone/middleware/s3_token.py
https://github.com/openstack/keystone/blob/master/keystone/middleware/swift_auth.py
Neither module depends directly on Keystone. s3_token calls Keystone through HTTP, and swift_auth retrieves Keystone identity data from the wsgi environment. Both modules, however, depend directly on Swift, and this forces the Keystone test suite to have to install Swift to run successfully.
Separate from the dependency issue, both middleware modules need to ensure that Swift-specific authorization requirements are met. It doesn't make sense for the Keystone project to be responsible for this, since the Swift team is the final arbiter of how Swift authorization should behave.
All signs point to the Swift repo being the best place for these modules to be maintained. Does this seem reasonable, or is there a better alternative? Please chime in, especially if you are Swift core.
Cheers,
Maru
_______________________________________________
Mailing list: https://launchpad.net/~openstack
Post to : openstack at lists.launchpad.net
Unsubscribe : https://launchpad.net/~openstack
More help : https://help.launchpad.net/ListHelp
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20120411/c88c85d7/attachment.html>
More information about the Openstack
mailing list