Fernet ÅäÅ«
µ¥ÀÌÅͺ£À̽º¿¡¼ À¯ÁöÇؾßÇÏ´Â UUID ÅäÅ«°ú´Â ´Þ¸®, Fernet ÅäÅ«Àº ºñ ¿µ±¸ÀûÀ¸·Î »ç¿ëÇÒ ¼ö ÀÖ½À´Ï´Ù. ¹èÆ÷ÀÚ´Â keystone.conf
¿¡¼ [token] provider = keystone.token.providers.fernet.Provider
¸¦ »ç¿ëÇÏ¿© Fernet ÅäÅ« Á¦°øÀÚ¸¦ È°¼ºÈÇÒ ¼ö ÀÖ½À´Ï´Ù.
Fernet token´Â ´ëĪ ¾ÏÈ£È Å°°¡ ÇÊ¿äÇÕ´Ï´Ù. keystone-manage fornet_setup
¸¦ »ç¿ëÇÏ¿© ¼³Á¤ÇÒ ¼ö ÀÖÀ¸¸ç, keystone-manage fernet_rotate
¸¦ »ç¿ëÇÏ¿© ÀÏÁ¤ ±â°£µ¿¾È ¸Å¹ø È®ÀÎÇÕ´Ï´Ù. ÀÌ·¯ÇÑ Å°´Â ´ÙÁß ³ëµå(¶Ç´Â ´ÙÁß region) ¹èÆ÷½Ã ¸ðµç Keystone ³ëµå¿¡¼ °øÀ¯µË´Ï´Ù. ±×¸®°í ÇÑ ³ëµå¿¡ ÀÇÇØ »ý¼ºµÈ ÅäÅ«ÀÌ Áï½Ã ´Ù¸¥ °ËÁõÀÌ °¡´ÉÇÕ´Ï´Ù.
https://wiki.openstack.org/wiki/ReleaseNotes/Kilo/ko#Fernet_.ED.86.A0.ED.81.B0
http://dolphm.com/openstack-keystone-fernet-tokens/
# vim /etc/keystone/keystone.conf
..............
[token]
provider = uuid
# service apache2 restart
# openstack token issue
+------------+----------------------------------+
| Field | Value |
+------------+----------------------------------+
| expires | 2016-07-07T02:05:00.216935Z |
| id | e182641670e24e09bd12c9651efa4afc |
| project_id | cc15238cf5ed4d708f53523c80b321cc |
| user_id | d53e7a93b05342e9a0792505df497894 |
+------------+----------------------------------+
# vim /etc/keystone/keystone.conf
[token]
..............
provider = fernet
# service apache2 restart
# openstack token issue
+------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Field | Value |
+------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| expires | 2016-07-07T02:07:05.291208Z |
| id | gAAAAABXfas5baUnIUsMkBfTM4Imxm0GBHX9SLbSieDuCzk8KV2-mk6dIurP4DaaHfpZJynOolY6kOABUtBKiwpiI1t-meR-fipNl9aYDzGczb9Qf1pzEiyVT1lqJa_1-GniHHuGEQtWsI0luRG7cOG73m3sT2H4mrzz5esxP78kQyY8gpd49AA |
| project_id | cc15238cf5ed4d708f53523c80b321cc |
| user_id | d53e7a93b05342e9a0792505df497894 |
+------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+