Skip to Main Content
Extending OpenStack
book

Extending OpenStack

by Omar Khedher
February 2018
Intermediate to advanced content levelIntermediate to advanced
300 pages
6h 17m
English
Packt Publishing
Content preview from Extending OpenStack

Keystone as SP – OpenID Connect

A second method to support SSO access in OpenStack is using OpenID Connect as IdP. The federation flow pretty much resembles to the SAML setup elaborated on in the previous section. The only difference is that, when using OpenID Connect, the assertion represents a set of claims.

The OpenID Connect federation setup in OpenStack can be briefly described with the following steps, as illustrated in the following diagram:

  1. An OpenStack user or a service requests a resource.
  2. As SP, the Keystone service captures the request and redirects it to the OAuth authentication system.
  3. The external IdP requests credentials from ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Containers in OpenStack

Containers in OpenStack

Pradeep Kumar Singh, Madhuri Kumari

Publisher Resources

ISBN: 9781786465535Supplemental Content