dear juanjo, my 2 cents on arian's question: The problem mentioned by arian is not solved, since idm/keystone is a single central service not high available in multiple locations beyond spain (such as the portal) - which does not reflect openstack usual architecture deployment for multi-region openstack. The default architecture for multi region keystone could not be applied since it requires to host user data outside spain. CREATE-NET proposed a solution (which was having a single keystone per node) using delegation to authenticate users using oauth2 from the "main" keystone, the advantages of such solution would have been: a - nodes don't fail when central keystone is not available. b - nodes can support both local users and FIWARE Lab users making "entering in the game" for without funding much cheaper the solution would require anyhow: - requires some changes in portal - requires some changes in blueprint engine thus basically - eventhough developed and partially tested - it was not moved ahead. alternative solutions may be based on saml, but i have the feeling this will get more complex for the portal and blueprints. best, federico -- -- Future Internet is closer than you think! http://www.fiware.org Official Mirantis partner for OpenStack Training https://www.create-net.org/community/openstack-training -- Dr. Federico M. Facca CREATE-NET Via alla Cascata 56/D 38123 Povo Trento (Italy) P +39 0461 312471 M +39 334 6049758 E federico.facca at create-net.org T @chicco785 W www.create-net.org -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.fiware.org/private/fiware-lab-recovery-tf/attachments/20150520/643eb806/attachment.html>
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy