1 # Copyright 2020 Canonical Ltd.
3 # Licensed under the Apache License, Version 2.0 (the "License");
4 # you may not use this file except in compliance with the License.
5 # You may obtain a copy of the License at
7 # http://www.apache.org/licenses/LICENSE-2.0
9 # Unless required by applicable law or agreed to in writing, software
10 # distributed under the License is distributed on an "AS IS" BASIS,
11 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 # See the License for the specific language governing permissions and
13 # limitations under the License.
17 default: opensourcemano/keystone:latest
18 description: The docker image to install.
22 The username for accessing the registry specified in image.
27 The password associated with image_username for accessing
28 the registry specified in image.
33 The maximum file size, in megabytes.
35 If there is a reverse proxy in front of Keystone, it may
36 need to be configured to handle the requested size.
38 ingress_whitelist_source_range:
41 A comma-separated list of CIDRs to store in the
42 ingress.kubernetes.io/whitelist-source-range annotation.
44 This can be used to lock down access to
45 Keystone based on source IP address.
49 description: TLS Secret name
53 description: Ingress URL
57 description: Boolean to enable/disable LDAP authentication
61 description: Region ID to be created when starting the service
65 description: Keystone DB Password
69 description: Admin username to be created when starting the service
73 description: Admin password to be created when starting the service
77 description: Admin project to be created when starting the service
81 description: Service Username to be created when starting the service
85 description: Service Password to be created when starting the service
89 description: Service Project to be created when starting the service
93 description: User domain name (Hardcoded in the container start.sh script)
98 Project domain name (Hardcoded in the container start.sh script)
101 # ENV LDAP_AUTHENTICATION_DOMAIN_NAME no default
102 # ENV LDAP_URL ldap://localhost
103 # ENV LDAP_BIND_USER no defauslt
104 # ENV LDAP_BIND_PASSWORD no default
105 # ENV LDAP_USER_TREE_DN no default
106 # ENV LDAP_USER_OBJECTCLASS inetOrgPerson
107 # ENV LDAP_USER_ID_ATTRIBUTE cn
108 # ENV LDAP_USER_NAME_ATTRIBUTE sn
109 # ENV LDAP_USER_PASS_ATTRIBUTE userPassword
110 # ENV LDAP_USER_FILTER no default
111 # ENV LDAP_USER_ENABLED_ATTRIBUTE enabled
112 # ENV LDAP_USER_ENABLED_MASK 0
113 # ENV LDAP_USER_ENABLED_DEFAULT true
114 # ENV LDAP_USER_ENABLED_INVERT false
115 # ENV LDAP_USE_STARTTLS false
116 # ENV LDAP_TLS_CACERT_BASE64 no default
117 # ENV LDAP_TLS_REQ_CERT demand