Page MenuHomePhabricator

Move tenant management out of ldap (after Kilo but before Mitaka)
Closed, DuplicatePublic

Description

As per https://osdir.com/ml/openstack-dev/2015-01/msg01764.html

In Kilo, ldap assigning for tenants and membership is deprecated. I'm pretty sure it will still /work/ in Kilo but it looks unlikely to persist afterwards. So, we need to migrate all of our tenant info out of ldap and into keystone/mysql.

Note that this will break our designate naming scheme (<instancename>.<tenantid>.eqiad.wmflabs) since in ldap a tenant name == tenant id, whereas in keystone/mysql the new tenant ids are likely to be guids.

Event Timeline

Andrew raised the priority of this task from to Medium.
Andrew updated the task description. (Show Details)
Andrew added projects: Cloud-VPS, Cloud-Services.
Andrew added a subscriber: Andrew.
Andrew renamed this task from Move tenant management out of ldap (after Kilo) to Move tenant management out of ldap (after Kilo but before M).May 24 2015, 7:06 PM
Andrew set Security to None.
AlexMonk-WMF renamed this task from Move tenant management out of ldap (after Kilo but before M) to Move tenant management out of ldap (after Kilo but before Mitaka).Aug 15 2016, 12:46 AM