Keystone External Authentication Plugins
Bases: keystone.auth.core.AuthMethodHandler
Use REMOTE_USER to look up the user in the identity backend.
auth_context is an in-out variable that will be updated with the user_id from the actual user from the REMOTE_USER env variable.
Bases: keystone.auth.plugins.external.DefaultDomain
Deprecated. Please use keystone.auth.external.DefaultDomain instead.
Bases: keystone.auth.plugins.external.Domain
Deprecated. Please use keystone.auth.external.Domain instead.
Bases: keystone.auth.plugins.external.Base
Deprecated. Please use keystone.auth.external.DefaultDomain instead.
This plugin exists to provide compatibility for the unintended behavior described here: https://bugs.launchpad.net/keystone/+bug/1253484
Bases: keystone.auth.plugins.external.Base
Deprecated. Please use keystone.auth.external.Domain instead.
Bases: keystone.auth.core.AuthMethodHandler
Authenticate federated user and return an authentication context.
Parameters: |
|
---|
In addition to user_id in auth_context, the saml2 plugin sets group_ids. When handling unscoped tokens, OS-FEDERATION:identity_provider and OS-FEDERATION:protocol are set as well.