internet/ansible-collections-openstack
3
0
Fork 0
mirror of https://opendev.org/openstack/ansible-collections-openstack.git synced 2026-05-08 14:23:03 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add authorization_ttl option for Keystone IDP.

Browse Source 
Closes-Bug: #2142395

Change-Id: Ib3fab86da2170cc6a349c06906ad27bf54ed0d5c
Signed-off-by: Taavi Ansper <taaviansperr@gmail.com>
This commit is contained in:
Taavi Ansper
2026-02-22 17:29:06 +02:00
parent 1bc4f648fb
commit b3a31eb6d5
1 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
plugins/modules/federation_idp.py
View File

@@ -12,6 +12,11 @@ description:
- Create, update or delete an identity provider of the OpenStack - Create, update or delete an identity provider of the OpenStack
identity (Keystone) service. identity (Keystone) service.
options: options:
authorization_ttl:
description:
- Time to keep the role assignments for users authenticating via this identity provider.
- When not provided, global default configured in the Identity service will be used.
type: int
description: description:
description: description:
- The description of the identity provider. - The description of the identity provider.
@@ -58,6 +63,7 @@ EXAMPLES = r'''
name: example_provider name: example_provider
domain_id: 0123456789abcdef0123456789abcdef domain_id: 0123456789abcdef0123456789abcdef
description: 'My example IDP' description: 'My example IDP'
authorization_ttl: 300
remote_ids: remote_ids:
- 'https://auth.example.com/auth/realms/ExampleRealm' - 'https://auth.example.com/auth/realms/ExampleRealm'
@@ -74,6 +80,10 @@ identity_provider:
returned: On success when I(state) is C(present). returned: On success when I(state) is C(present).
type: dict type: dict
contains: contains:
authorization_ttl:
description: Time to keep the role assignments for users authenticating via this identity provider.
type: int
sample: 300
description: description:
description: Identity provider description description: Identity provider description
type: str type: str
@@ -104,6 +114,7 @@ from ansible_collections.openstack.cloud.plugins.module_utils.resource import St
class IdentityProviderModule(OpenStackModule): class IdentityProviderModule(OpenStackModule):
argument_spec = dict( argument_spec = dict(
authorization_ttl=dict(type='int'),
description=dict(), description=dict(),
domain_id=dict(), domain_id=dict(),
id=dict(required=True, aliases=['name']), id=dict(required=True, aliases=['name']),
@@ -127,7 +138,7 @@ class IdentityProviderModule(OpenStackModule):
kwargs['attributes'] = \ kwargs['attributes'] = \
dict((k, self.params[k]) dict((k, self.params[k])
for k in ['description', 'domain_id', 'id', 'is_enabled', for k in ['authorization_ttl', 'description', 'domain_id', 'id', 'is_enabled',
'remote_ids'] 'remote_ids']
if self.params[k] is not None) if self.params[k] is not None)