Prise en charge des nouvelles options pour l'auth LDAP

Définition de la possiblité de gérer les groupes dans sunstone
pour les utilisateurs du LDAP (comme dans les versions précédentes)

ref #19359 @2h
This commit is contained in:
Philippe Caseiro 2017-02-24 16:53:47 +01:00
parent 3e50d4935e
commit 73e764a8ab
1 changed files with 34 additions and 0 deletions

View File

@ -551,6 +551,25 @@ MARKET_MAD = [
ARGUMENTS = "-t 15 -m http,s3,one" ARGUMENTS = "-t 15 -m http,s3,one"
] ]
#*******************************************************************************
# IPAM Driver Configuration
#*******************************************************************************
# Drivers to manage different IPAMs
# executable: path of the IPAM driver executable, can be an
# absolute path or relative to $ONE_LOCATION/lib/mads (or
# /usr/lib/one/mads/ if OpenNebula was installed in /)
#
# arguments : for the driver executable
# -t number of threads, i.e. number of operations at the same time
# -i IPAM mads separated by commas
#*******************************************************************************
IPAM_MAD = [
EXECUTABLE = "one_ipam",
ARGUMENTS = "-t 1 -i dummy"
]
#******************************************************************************* #*******************************************************************************
# Hook Manager Configuration # Hook Manager Configuration
#******************************************************************************* #*******************************************************************************
@ -838,6 +857,12 @@ AUTH_MAD = [
AUTHN = "ssh,x509,server_cipher,server_x509" AUTHN = "ssh,x509,server_cipher,server_x509"
] ]
AUTH_MAD_CONF = [
NAME = "core",
PASSWORD_CHANGE = "YES",
DRIVER_MANAGED_GROUPS = "NO",
MAX_TOKEN_TIME = "-1"
]
%else %else
AUTH_MAD = [ AUTH_MAD = [
EXECUTABLE = "one_auth_mad", EXECUTABLE = "one_auth_mad",
@ -845,6 +870,15 @@ AUTH_MAD = [
] ]
DEFAULT_AUTH = "ldap" DEFAULT_AUTH = "ldap"
%if %%getVar('sunstone_auth_modes','') == 'ldap'
AUTH_MAD_CONF = [
NAME = "ldap",
PASSWORD_CHANGE = "YES",
DRIVER_MANAGED_GROUPS = "YES",
MAX_TOKEN_TIME = "86400"
]
%end if
%end if %end if