Closed mnaser closed 1 month ago
This is now completed inside
https://github.com/vexxhost/keystoneauth-websso
The only missing piece is adding the trusted_dashboards and documenting it.
That's all done with documentation living here:
https://vexxhost.github.io/atmosphere/quick-start.html#single-sign-on-sso
When using Keycloak to authenticate to the cloud, there's not an easy way to login to the cloud. The ideal flow would be a driver that does the following:
OS_AUTH_URL
,OS_IDENTITY_PROVIDER
(defaults toatmosphere
), andOS_IDENTITY_PROVIDER_PROTOCOL
(defaults toopenid
)POST
POST
and send that over toopenstacksdk
.This will probably end up on another repository, and the only server side change would be that
trusted_dashboards
will have to change as well.