Switch fernet to be the default token provider Use the fernet token provider as the default for keystone. The Keystone token provider of choice is changing from UUID to Fernet. However, due the the need for multi-site keystone deploys to have keys kept in sync, we cannot change the default in upstream Keystone without breaking existing deployments. Fernet requires a deliberate setup step like what is done in devstack. Making the change in devstack documents the expected setup. Change-Id: I8c0db244634b0861b0eb3c48fe6ede153f7f04f2

commit: 181588b9ba50fefea12617a9a5e774daddfed20c [log] [tgz]
author: Brant Knudson <bknudson@us.ibm.com> Thu Jun 25 17:58:51 2015 -0500
committer: ayoung <ayoung@redhat.com> Tue Apr 19 19:04:37 2016 +0000
tree: 0a7207ffdeb8ddd32aeb9c1e234d0ccf2c4d9f77
parent: 6109a6b7a960bfca0afaa915a27c8d99f140ed10 [diff] [blame]
diff --git a/lib/keystone b/lib/keystone
index d830924..49d819e 100644
--- a/lib/keystone
+++ b/lib/keystone

@@ -89,7 +89,7 @@
 
 # Select Keystone's token provider (and format)
 # Choose from 'uuid', 'pki', 'pkiz', or 'fernet'
-KEYSTONE_TOKEN_FORMAT=${KEYSTONE_TOKEN_FORMAT:-}
+KEYSTONE_TOKEN_FORMAT=${KEYSTONE_TOKEN_FORMAT:-fernet}
 KEYSTONE_TOKEN_FORMAT=$(echo ${KEYSTONE_TOKEN_FORMAT} | tr '[:upper:]' '[:lower:]')
 
 # Set Keystone interface configuration
commit	181588b9ba50fefea12617a9a5e774daddfed20c	[log] [tgz]
author	Brant Knudson <bknudson@us.ibm.com>	Thu Jun 25 17:58:51 2015 -0500
committer	ayoung <ayoung@redhat.com>	Tue Apr 19 19:04:37 2016 +0000
tree	0a7207ffdeb8ddd32aeb9c1e234d0ccf2c4d9f77
parent	6109a6b7a960bfca0afaa915a27c8d99f140ed10 [diff] [blame]