diff options
| author | Luis Pabon <lpabon@redhat.com> | 2013-10-10 16:53:28 -0400 |
|---|---|---|
| committer | Luis Pabon <lpabon@redhat.com> | 2013-10-13 19:36:20 -0700 |
| commit | ac1ac5bd2171e61ba4332dcae33d8a433cef7a4f (patch) | |
| tree | 9d836201435c83cf59a659124f004a03f488c1f5 /gluster/swift/common/middleware/gswauth/README.md | |
| parent | 46cd43fdf401b16f9e1b588e5fc8d2c5dd599b37 (diff) | |
GSWauth authentication to be based on SWauth
We are planning on creating a GlusterFS aware authentication
system for gluster-swift based on SWauth.
We forked from SWauth commit
41d36ebe160aa3346f6f45197fff0c80f38fde58
Change-Id: Ia28730d21e04fc8d9ce0cb317fc04d0d97583fca
Signed-off-by: Luis Pabon <lpabon@redhat.com>
Reviewed-on: http://review.gluster.org/6069
Diffstat (limited to 'gluster/swift/common/middleware/gswauth/README.md')
| -rw-r--r-- | gluster/swift/common/middleware/gswauth/README.md | 71 |
1 files changed, 71 insertions, 0 deletions
diff --git a/gluster/swift/common/middleware/gswauth/README.md b/gluster/swift/common/middleware/gswauth/README.md new file mode 100644 index 0000000..2ccd199 --- /dev/null +++ b/gluster/swift/common/middleware/gswauth/README.md @@ -0,0 +1,71 @@ +Swauth +------ + +An Auth Service for Swift as WSGI Middleware that uses Swift itself as a +backing store. Sphinx-built docs at: <http://gholt.github.com/swauth/> + +See also <https://github.com/openstack/keystone> for the standard OpenStack +auth service. + + +NOTE +---- + +**Be sure to review the Sphinx-built docs at: +<http://gholt.github.com/swauth/>** + + +Quick Install +------------- + +1) Install Swauth with ``sudo python setup.py install`` or ``sudo python + setup.py develop`` or via whatever packaging system you may be using. + +2) Alter your proxy-server.conf pipeline to have swauth instead of tempauth: + + Was: + + [pipeline:main] + pipeline = catch_errors cache tempauth proxy-server + + Change To: + + [pipeline:main] + pipeline = catch_errors cache swauth proxy-server + +3) Add to your proxy-server.conf the section for the Swauth WSGI filter: + + [filter:swauth] + use = egg:swauth#swauth + set log_name = swauth + super_admin_key = swauthkey + +4) Be sure your proxy server allows account management: + + [app:proxy-server] + ... + allow_account_management = true + +5) Restart your proxy server ``swift-init proxy reload`` + +6) Initialize the Swauth backing store in Swift ``swauth-prep -K swauthkey`` + +7) Add an account/user ``swauth-add-user -A http://127.0.0.1:8080/auth/ -K + swauthkey -a test tester testing`` + +8) Ensure it works ``swift -A http://127.0.0.1:8080/auth/v1.0 -U test:tester -K + testing stat -v`` + + +Web Admin Install +----------------- + +1) If you installed from packages, you'll need to cd to the webadmin directory + the package installed. This is ``/usr/share/doc/python-swauth/webadmin`` + with the Lucid packages. If you installed from source, you'll need to cd to + the webadmin directory in the source directory. + +2) Upload the Web Admin files with ``swift -A http://127.0.0.1:8080/auth/v1.0 + -U .super_admin:.super_admin -K swauthkey upload .webadmin .`` + +3) Open ``http://127.0.0.1:8080/auth/`` in your browser. |