Bug 1072988 - [RFE] keystone config migration to ldap requires manual changes into sql database
Summary: [RFE] keystone config migration to ldap requires manual changes into sql data...
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-keystone
Version: 4.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: 5.0 (RHEL 7)
Assignee: RHOS Maint
QA Contact: Ami Jeain
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-03-05 15:04 UTC by Giulio Fidente
Modified: 2016-04-27 00:25 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-03-27 14:46:28 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Giulio Fidente 2014-03-05 15:04:54 UTC 
Description of problem:
if user attempts to change the keystone config to use an ldap backend for Identity and an sql backend for Assignments, it is forced to update manually the database relations created for all the pre-existing users in "user_project_metadata.user_id" as users there are referenced by UUID


Version-Release number of selected component (if applicable):
openstack-keystone-2013.2.2-1.el6ost.noarch


Expected:
A migration script could probably update the references by matching old UUIDs to LDAP users and update the user_id field accordingly
Comment 2 Nathan Kinder 2014-03-27 14:46:28 UTC 
We don't see this sort of migration as a common use case. It is possible to write a script to perform the migration, but it's likely something that could best be done on a one-off basis or when the need arises.
Note You need to log in before you can comment on or make changes to this bug.