We are jazzed to announce the release of: puppet-keystone 19.5.0: Puppet module for OpenStack Keystone This release is part of the xena stable release series. The source is available from: https://opendev.org/openstack/puppet-keystone Download the package from: https://tarballs.openstack.org/puppet-keystone/ Please report issues through: https://bugs.launchpad.net/puppet-keystone/+bugs For more details, please see below. 19.5.0 ^^^^^^ New Features ************ * Added "description" parameter to "keystone_user" resource. * The "keystone::federation::ipenidc" class now supports the new "openidc_response_mode" parameter, to customize mod_auth_openidc response mode. Security Issues *************** * Content of fernet keys and credential keys are now hidden from output, when these files are updated. Changes in puppet-keystone 19.4.0..19.5.0 ----------------------------------------- 16883a6 Prepare the final stable/xena release ca43d64 OIDC: Make sure the dependent auth modules are loaded 9510fcd setuptools: Disable auto discovery f5d1daf Ensure key contents are hidden 114272f Make sure keystone package name is asserted 07c30e3 Add description support to keystone_user 801f94d keystone_user: Use un-scoped token to verify password ed8ab83 Ensure inet6: formatting for a comma-separated list string bcc37d7 Use systemctl to restart the keystone service 2b391b4 OIDC: Add support for setting OIDCResponseMode cd8172d Remove TripleO job d48547f Update TOX_CONSTRAINTS_FILE for stable/xena 73184be Update .gitreview for stable/xena Diffstat (except docs and test files) ------------------------------------- .gitreview | 1 + .zuul.yaml | 19 --- lib/puppet/provider/keystone.rb | 11 +- lib/puppet/provider/keystone_user/openstack.rb | 25 ++-- lib/puppet/type/keystone_user.rb | 4 + manifests/federation/openidc.pp | 9 ++ manifests/init.pp | 4 +- manifests/resource/authtoken.pp | 7 +- metadata.json | 2 +- .../notes/bug-1979672-003a5939f3bd6f67.yaml | 5 + ...user-provider-description-18806553c4b2be3f.yaml | 4 + .../openidc_response_mode-f5a2ddf95bd4b752.yaml | 6 + setup.py | 1 + spec/acceptance/keystone_wsgi_apache_spec.rb | 11 +- spec/classes/keystone_federation_openidc_spec.rb | 15 +++ spec/classes/keystone_init_spec.rb | 15 ++- spec/defines/keystone_resource_authtoken_spec.rb | 39 +++++- spec/unit/provider/keystone_spec.rb | 2 +- spec/unit/provider/keystone_user/openstack_spec.rb | 131 +++++++++------------ templates/openidc.conf.erb | 3 + tox.ini | 2 +- 21 files changed, 185 insertions(+), 131 deletions(-)