Xena Series Release Notes¶
keystone::federation::ipenidcclass now supports the new
openidc_response_modeparameter, to customize mod_auth_openidc response mode.
Content of fernet keys and credential keys are now hidden from output, when these files are updated.
Adds new purge_config parameter. When set to true, the policy file is cleared during configuration process. This allows to remove any existing rules before applying them or clean the file when all policies got removed.
Adding the following configurable items for OpenID:
Fedora is no longer supported.
There is now a new policy_dirs parameter in the keystone::policy class, so one can set a custom path.
A new class keystone::wsgi::uwsgi exist to allow configuring uwsgi in operating systems that support this (ie: currently Debian). This helps configuring the number of processes, threads and listen socket. Also, a new keystone_wsgi_config provider now exist.