Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

OpenStack Keystone Stein Project Update

16 views

Published on

Colleen Murphy and I share what the team accomplished in Rocky, what's being worked on for Stein, and what to look forward to for Train.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

OpenStack Keystone Stein Project Update

  1. 1. Stein Project Update Lance Bragstad (@LanceBragstad) Colleen Murphy (@_colleenm)
  2. 2. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  3. 3. What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  4. 4. What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  5. 5. What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  6. 6. 2018 User Survey - Where should we prioritize resources?
  7. 7. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  8. 8. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  9. 9. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  10. 10. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  11. 11. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  12. 12. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  13. 13. What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  14. 14. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  15. 15. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  16. 16. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  17. 17. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  18. 18. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  19. 19. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  20. 20. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  21. 21. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  22. 22. What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  23. 23. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  24. 24. Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  25. 25. Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  26. 26. Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  27. 27. Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  28. 28. Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  29. 29. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  30. 30. Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
  31. 31. Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
  32. 32. Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
  33. 33. Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
  34. 34. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  35. 35. How you can contribute office hours on Tuesdays weekly reports every Friday
  36. 36. How you can contribute office hours on Tuesdays weekly reports every Friday
  37. 37. What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  38. 38. Forum sessions Project Onboarding on Tuesday @ 2:30 Deletion of project and project resources on Wednesday @ 4:20 Keystone as an Identity Provider Proxy on Thursday @ 11:40 Operator Feedback Session on Thursday @ 1:40 Change ownership of resources on Thursday @ 1:40
  39. 39. Related talks OpenStack Policy 101 on Tuesday @ 1:40 Dynamic Policy for OpenStack with Open Policy Agent on Tuesday @ 3:10 Towards an Open-Cloud Exchange on Wednesday @ 3:20 Enforcing Quota Consistently with Unified Limits on Wednesday @ 5:30 Pushing Keystone over the Edge on Thursday @ 9:50 A Seamlessly Federated Multi-Cloud on Thursday @ 2:30 Identity integration between OpenStack and Kubernetes on Thursday @ 5:10

×