Jump to: navigation, search


Revision as of 14:52, 8 January 2016 by Dfleming (talk | contribs) (Fixed link to V2 spec)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

OpenStack Identity ("Keystone")

Source code
Bug tracker
Developer doc

Related projects

  • Python Keystone client
  • Identity API documentation


What is Keystone?

Keystone is the identity service used by OpenStack for authentication (authN) and high-level authorization (authZ). It currently supports token-based authN and user-service authorization. It has recently been rearchitected to allow for expansion to support proxying external services and AuthN/AuthZ mechanisms such as oAuth, SAML and openID in future versions.




Bugs and Blueprints

  • keystone bugs
  • keystone client bugs
  • keystone blueprints
  • keystone client blueprints
  • bugs tags
    • blueprint (implies bug indicates a needed feature or function, can be migrated to a blueprint)
    • python-keystoneclient (related to the client end of keystone)
    • legacy (existing prior to the feb14, 2012 rebaseline of the code)
    • gsoc (appropriate for a google summer of code project effort)
    • low-hanging-fruit (easy piece for someone to get started with, minimal design needed to solve)
  • importance meanings
    • critical (bug renders the system non-functional)
    • high (bug we want resolved before the next release)
    • medium/low (general issue bug or annoyance, perhaps requiring significant design change to implement or new features needed to resolve)
    • wishlist (nice to have)

Liberty Priorities

Use Cases