X-Git-Url: https://osm.etsi.org/gitweb/?a=blobdiff_plain;f=installers%2Fcharm%2Fkeystone%2Fconfig.yaml;h=402096ca9e1dddf3c2b7071e50ad24a6dde902f1;hb=d615331715f392026fe6439f94c488a8e39c9cbb;hp=b014e55b340b7dfd9eef5a185815a6f24e38c151;hpb=126a443a5bd8c7245234a79f530bfa54222abb21;p=osm%2Fdevops.git

diff --git a/installers/charm/keystone/config.yaml b/installers/charm/keystone/config.yaml
index b014e55b..402096ca 100644
--- a/installers/charm/keystone/config.yaml
+++ b/installers/charm/keystone/config.yaml
@@ -12,21 +12,6 @@
 #     See the License for the specific language governing permissions and
 #     limitations under the License.
 options:
-  image:
-    type: string
-    default: opensourcemano/keystone:latest
-    description: The docker image to install.
-  image_username:
-    type: string
-    description: |
-      The username for accessing the registry specified in image.
-    default: ""
-  image_password:
-    type: string
-    description: |
-      The password associated with image_username for accessing
-      the registry specified in image.
-    default: ""
   max_file_size:
     type: int
     description: |
@@ -60,6 +45,15 @@ options:
     type: string
     description: Keystone DB Password
     default: admin
+  mysql_host:
+    type: string
+    description: MySQL Host (external database)
+  mysql_port:
+    type: int
+    description: MySQL Port (external database)
+  mysql_root_password:
+    type: string
+    description: MySQL Root Password (external database)
   admin_username:
     type: string
     description: Admin username to be created when starting the service
@@ -93,6 +87,10 @@ options:
     description: |
       Project domain name (Hardcoded in the container start.sh script)
     default: default
+  token_expiration:
+    type: int
+    description: Token keys expiration in seconds
+    default: 172800
   ldap_enabled:
     type: boolean
     description: Boolean to enable/disable LDAP authentication
@@ -113,6 +111,19 @@ options:
     type: string
     description: Password to bind and search for users
     default: ""
+  ldap_chase_referrals:
+    type: string
+    description: |
+      Sets keystoneâs referral chasing behavior across directory partitions.
+      If left unset, the systemâs default behavior will be used.
+    default: ""
+  ldap_page_size:
+    type: int
+    description: |
+      Defines the maximum number of results per page that keystone should
+      request from the LDAP server when listing objects. A value of zero (0)
+      disables paging.
+    default: 0
   ldap_user_tree_dn:
     type: string
     description: |
@@ -183,13 +194,13 @@ options:
       user is enabled.
     default: 0
   ldap_user_enabled_default:
-    type: boolean
+    type: string
     description: |
       Most LDAP servers use a boolean or bit in a control field to indicate
       enablement. However, some schemas might use an integer value in an
       attribute. In this situation, set user_enabled_default to the integer
       value that represents a user being enabled.
-    default: true
+    default: "true"
   ldap_user_enabled_invert:
     type: boolean
     description: |
@@ -199,6 +210,14 @@ options:
       setting in conjunction with user_enabled_attribute to map the lock
       status to disabled in Keystone.
     default: false
+  ldap_group_objectclass:
+    type: string
+    description: The LDAP object class to use for groups.
+    default: groupOfNames
+  ldap_group_tree_dn:
+    type: string
+    description: The search base to use for groups.
+    default: ""
   ldap_use_starttls:
     type: boolean
     description: |