LB
Uploaded byLance Bragstad
PPTX, PDF243 views

OpenStack Keystone Stein Project Update

The document provides an update on the OpenStack identity project, detailing accomplishments in the Rocky release, ongoing goals in the Stein release, and future initiatives. Key achievements include improvements in role management, unified limits, and framework enhancements, while future goals involve further development of application credentials and multi-site capabilities. The document also encourages community participation through office hours and related sessions.

Embed presentation

Download to read offline
Stein Project Update Lance Bragstad (@LanceBragstad) Colleen Murphy (@_colleenm)
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
What is OpenStack Identity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
2018 User Survey - Where should we prioritize resources?
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What was accomplished in Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What are we achieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
Looking ahead to $t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
Cross-project initiatives applying conventions for consistent policy names adoption of unified limits properly consuming different scope types default roles support
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
How you can contribute office hours on Tuesdays weekly reports every Friday
How you can contribute office hours on Tuesdays weekly reports every Friday
What is OpenStack Identity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
Forum sessions Project Onboarding on Tuesday @ 2:30 Deletion of project and project resources on Wednesday @ 4:20 Keystone as an Identity Provider Proxy on Thursday @ 11:40 Operator Feedback Session on Thursday @ 1:40 Change ownership of resources on Thursday @ 1:40
Related talks OpenStack Policy 101 on Tuesday @ 1:40 Dynamic Policy for OpenStack with Open Policy Agent on Tuesday @ 3:10 Towards an Open-Cloud Exchange on Wednesday @ 3:20 Enforcing Quota Consistently with Unified Limits on Wednesday @ 5:30 Pushing Keystone over the Edge on Thursday @ 9:50 A Seamlessly Federated Multi-Cloud on Thursday @ 2:30 Identity integration between OpenStack and Kubernetes on Thursday @ 5:10
OpenStack Keystone Stein Project Update

More Related Content

PPTX
OpenStack Keystone Queens Project Update
byLance Bragstad
 
ODP
OpenStack Keystone Rocky Project Update
byLance Bragstad
 
PPTX
OpenStack Keystone Pike Project Update
byLance Bragstad
 
PDF
Improvements in OpenStack Integration for Application Developers
byRico Lin
 
PPTX
OpenStack Summit Berlin - Keystone Project On-boarding
byLance Bragstad
 
PPTX
Identity in Openstack Icehouse
byDavid Waite
 
PPTX
Openstack 101
byJason Kalai Arasu
 
PDF
Openstack 101 by Jason Kalai
byMyNOG
 
OpenStack Keystone Queens Project Update
byLance Bragstad
 
OpenStack Keystone Rocky Project Update
byLance Bragstad
 
OpenStack Keystone Pike Project Update
byLance Bragstad
 
Improvements in OpenStack Integration for Application Developers
byRico Lin
 
OpenStack Summit Berlin - Keystone Project On-boarding
byLance Bragstad
 
Identity in Openstack Icehouse
byDavid Waite
 
Openstack 101
byJason Kalai Arasu
 
Openstack 101 by Jason Kalai
byMyNOG
 

Similar to OpenStack Keystone Stein Project Update

PPTX
OpenStack Keystone
byDeepti Ramakrishna
 
PPTX
Keystone Updates - Kilo Edition
byOpenStack Foundation
 
PPTX
Keystone - Openstack Identity Service
byPrasad Mukhedkar
 
PDF
What's new in Havana--Keystone
byMirantis
 
PPT
OpenStack - An Overview
bygraziol
 
PDF
Keystone project onboarding
byColleen_Murphy
 
PDF
OpenStack Identity - Keystone (liberty) by Lorenzo Carnevale and Silvio Tavilla
byLorenzo Carnevale
 
PPTX
Some Advanced OpenStack Overview Document
byTrungPhamVan10
 
PDF
OpenStack Identity - Keystone (kilo) by Lorenzo Carnevale and Silvio Tavilla
byLorenzo Carnevale
 
PDF
CIS14: Identity in OpenStack Icehouse
byCloudIDSummit
 
PPTX
Building IAM for OpenStack
bySteve Martinelli
 
PPTX
TOWARDS Hybrid OpenStack Clouds in the Real World
byAndrew Hickey
 
PDF
OpenStack: Security Beyond Firewalls
byGiuseppe Paterno'
 
PDF
Openstack: security beyond firewalls
byGARL
 
PPTX
OpenStack Icehouse Overview
byOpenStack Foundation
 
PPTX
Why OpenStack on UCS? An Introduction to Red Hat and Cisco OpenStack Solution
byElizabeth Sale
 
PPTX
Introduction Openstack
byRanjith Kumar
 
PPTX
RBAC in Swift
byHisashiOsanai
 
PDF
State of the Stack v4 - OpenStack in All It's Glory
byRandy Bias
 
PPTX
Keystone Project Onboarding
byLance Bragstad
 
OpenStack Keystone
byDeepti Ramakrishna
 
Keystone Updates - Kilo Edition
byOpenStack Foundation
 
Keystone - Openstack Identity Service
byPrasad Mukhedkar
 
What's new in Havana--Keystone
byMirantis
 
OpenStack - An Overview
bygraziol
 
Keystone project onboarding
byColleen_Murphy
 
OpenStack Identity - Keystone (liberty) by Lorenzo Carnevale and Silvio Tavilla
byLorenzo Carnevale
 
Some Advanced OpenStack Overview Document
byTrungPhamVan10
 
OpenStack Identity - Keystone (kilo) by Lorenzo Carnevale and Silvio Tavilla
byLorenzo Carnevale
 
CIS14: Identity in OpenStack Icehouse
byCloudIDSummit
 
Building IAM for OpenStack
bySteve Martinelli
 
TOWARDS Hybrid OpenStack Clouds in the Real World
byAndrew Hickey
 
OpenStack: Security Beyond Firewalls
byGiuseppe Paterno'
 
Openstack: security beyond firewalls
byGARL
 
OpenStack Icehouse Overview
byOpenStack Foundation
 
Why OpenStack on UCS? An Introduction to Red Hat and Cisco OpenStack Solution
byElizabeth Sale
 
Introduction Openstack
byRanjith Kumar
 
RBAC in Swift
byHisashiOsanai
 
State of the Stack v4 - OpenStack in All It's Glory
byRandy Bias
 
Keystone Project Onboarding
byLance Bragstad
 

Recently uploaded

PPTX
cybercrime in Information security .pptx
byismaeelsahib032
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PPTX
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
cybercrime in Information security .pptx
byismaeelsahib032
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
software-security-intro in information security.ppt
byismaeelsahib032
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
API-First Architecture in Financial Systems
bycyy111112
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
The year in review - MarvelClient in 2025
bypanagenda
 

OpenStack Keystone Stein Project Update

  • 1.
    Stein Project Update LanceBragstad (@LanceBragstad) Colleen Murphy (@_colleenm)
  • 2.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 3.
    What is OpenStackIdentity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  • 4.
    What is OpenStackIdentity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  • 5.
    What is OpenStackIdentity? a shared service for authentication and authorization supplies identity information to end users and services broker between OpenStack and other identity services
  • 6.
    2018 User Survey- Where should we prioritize resources?
  • 7.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 8.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 9.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 10.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 11.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 12.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 13.
    What was accomplishedin Rocky? introduced default roles unified limits API improvements implemented two-level hierarchical limits removed Paste[Deploy] & home-grown API dispatching created the oslo.limit library client support for system assignments and unified limits
  • 14.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 15.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 16.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 17.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 18.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 19.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 20.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 21.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 22.
    What are weachieving in Stein? domain support for unified limits application credential capability lists federation/edge improvements remaining flask work better default policies consumption of system-scope MFA receipts JWT
  • 23.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 24.
    Looking ahead to$t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  • 25.
    Looking ahead to$t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  • 26.
    Looking ahead to$t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  • 27.
    Looking ahead to$t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  • 28.
    Looking ahead to$t-release identity provider proxy more limit models multi-site enablement better upgrade support policy clean-up
  • 29.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 30.
    Cross-project initiatives applying conventionsfor consistent policy names adoption of unified limits properly consuming different scope types default roles support
  • 31.
    Cross-project initiatives applying conventionsfor consistent policy names adoption of unified limits properly consuming different scope types default roles support
  • 32.
    Cross-project initiatives applying conventionsfor consistent policy names adoption of unified limits properly consuming different scope types default roles support
  • 33.
    Cross-project initiatives applying conventionsfor consistent policy names adoption of unified limits properly consuming different scope types default roles support
  • 34.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 35.
    How you cancontribute office hours on Tuesdays weekly reports every Friday
  • 36.
    How you cancontribute office hours on Tuesdays weekly reports every Friday
  • 37.
    What is OpenStackIdentity? What was accomplished in Rocky? What are we achieving in Stein? Looking ahead to $t-release Cross-project initiatives How you can contribute Related sessions & talks
  • 38.
    Forum sessions Project Onboardingon Tuesday @ 2:30 Deletion of project and project resources on Wednesday @ 4:20 Keystone as an Identity Provider Proxy on Thursday @ 11:40 Operator Feedback Session on Thursday @ 1:40 Change ownership of resources on Thursday @ 1:40
  • 39.
    Related talks OpenStack Policy101 on Tuesday @ 1:40 Dynamic Policy for OpenStack with Open Policy Agent on Tuesday @ 3:10 Towards an Open-Cloud Exchange on Wednesday @ 3:20 Enforcing Quota Consistently with Unified Limits on Wednesday @ 5:30 Pushing Keystone over the Edge on Thursday @ 9:50 A Seamlessly Federated Multi-Cloud on Thursday @ 2:30 Identity integration between OpenStack and Kubernetes on Thursday @ 5:10

Editor's Notes