Bug 1041889

Summary: [RFE][keystone]: Distributed signing of Keystone Tokens
Product: Red Hat OpenStack Reporter: RHOS Integration <rhos-integ>
Component: RFEsAssignee: RHOS Maint <rhos-maint>
Status: CLOSED UPSTREAM QA Contact:
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: unspecifiedCC: markmc, yeylon
Target Milestone: ---Keywords: FutureFeature
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
URL: https://blueprints.launchpad.net/keystone/+spec/distributed-signing
Whiteboard: upstream_milestone_none upstream_status_not-started upstream_definition_superseded
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-03-19 17:11:20 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description RHOS Integration 2013-12-12 19:54:37 UTC 
Cloned from launchpad blueprint https://blueprints.launchpad.net/keystone/+spec/distributed-signing.

Description:

Allow separate organizations to control their own sets of users and projects while continuing to provide security at the same level as Keystone currently does.  Using PKI as the mechanism and Domains as the dividing point.

Changing the name to more clearly specify the scope of this blueprint.  I'll update the Wiki as well.

Specification URL (additional information):

http://wiki.openstack.org/keystone/DistributedSigning