Determine authentication method types for deployment.
Returns: | a dictionary containing the methods and their indexes |
---|
Keystone External Authentication Plugins
Bases: keystone.auth.core.AuthMethodHandler
Use REMOTE_USER to look up the user in the identity backend.
auth_context is an in-out variable that will be updated with the user_id from the actual user from the REMOTE_USER env variable.
Bases: keystone.auth.plugins.external.DefaultDomain
Deprecated. Please use keystone.auth.external.DefaultDomain instead.
Bases: keystone.auth.plugins.external.Domain
Deprecated. Please use keystone.auth.external.Domain instead.
Bases: keystone.auth.plugins.external.Domain
Allows kerberos as a method.
Bases: keystone.auth.plugins.external.Base
Deprecated. Please use keystone.auth.external.DefaultDomain instead.
This plugin exists to provide compatibility for the unintended behavior described here: https://bugs.launchpad.net/keystone/+bug/1253484
Bases: keystone.auth.plugins.external.Base
Deprecated. Please use keystone.auth.external.Domain instead.
Bases: keystone.auth.core.AuthMethodHandler
Authenticate mapped user and return an authentication context.
Parameters: |
|
---|
In addition to user_id in auth_context, this plugin sets group_ids, OS-FEDERATION:identity_provider and OS-FEDERATION:protocol
Setup federated username.
Function covers all the cases for properly setting user id, a primary identifier for identity objects. Initial version of the mapping engine assumed user is identified by name and his id is built from the name. We, however need to be able to accept local rules that identify user by either id or name/domain.
The following use-cases are covered:
Parameters: |
|
---|---|
Type: | dictionary |
Raises: | exception.Unauthorized |
Returns: | dictionary with user identification |
Return type: | dict |
Bases: keystone.auth.plugins.mapped.Mapped
Bases: keystone.auth.core.AuthMethodHandler