commit 64e5a0162289e40bbcb30888fda778d48e9ba05f
author Jenkins <jenkins@review.openstack.org> Sat Feb 23 19:25:34 2013 +0000
committer Gerrit Code Review <review@openstack.org> Sat Feb 23 19:25:34 2013 +0000
tree d4600a9da9094ba30acd8d842d6d348d2e79cbac
parent f41024e4b0b39f4b2d5d6bdb4873010f2e625b42
parent d36268af07744a3f4219f3d60a09b67c9e471cf5

Merge "Support qpid as message provider for ceilometer"

files/ldap/openstack.ldif

diff --git a/files/ldap/openstack.ldif b/files/ldap/openstack.ldif
index 287fda4..00c9861 100644
--- a/files/ldap/openstack.ldif
+++ b/files/ldap/openstack.ldif
@@ -19,3 +19,8 @@
 dn: ou=Projects,dc=openstack,dc=org
 objectClass: organizationalUnit
 ou: Projects
+
+dn: cn=9fe2ff9ee4384b1894a90878d3e92bab,ou=Roles,dc=openstack,dc=org
+objectClass: organizationalRole
+ou: _member_
+cn: 9fe2ff9ee4384b1894a90878d3e92bab

lib/keystone

diff --git a/lib/keystone b/lib/keystone
index 866c62e..a1a57f8 100644
--- a/lib/keystone
+++ b/lib/keystone
@@ -99,6 +99,16 @@
         iniset $KEYSTONE_CONF ldap password  $LDAP_PASSWORD
         iniset $KEYSTONE_CONF ldap user "dc=Manager,dc=openstack,dc=org"
         iniset $KEYSTONE_CONF ldap suffix "dc=openstack,dc=org"
+        iniset $KEYSTONE_CONF ldap use_dumb_member "True"
+        iniset $KEYSTONE_CONF ldap user_attribute_ignore "enabled,email,tenants,tenantId"
+        iniset $KEYSTONE_CONF ldap tenant_attribute_ignore "enabled"
+        iniset $KEYSTONE_CONF ldap tenant_domain_id_attribute "businessCategory"
+        iniset $KEYSTONE_CONF ldap tenant_desc_attribute "description"
+        iniset $KEYSTONE_CONF ldap tenant_tree_dn "ou=Projects,dc=openstack,dc=org"
+        iniset $KEYSTONE_CONF ldap user_domain_id_attribute "businessCategory"
+        iniset $KEYSTONE_CONF ldap user_tree_dn "ou=Users,dc=openstack,dc=org"
+        iniset $KEYSTONE_CONF DEFAULT member_role_id "9fe2ff9ee4384b1894a90878d3e92bab"
+        iniset $KEYSTONE_CONF DEFAULT member_role_name "_member_"
     fi
 
     if [[  "$KEYSTONE_IDENTITY_BACKEND" == "ldap"  ]]; then