openstack team mailing list archive

Thread
Date

Re: Propagation of account state management changes in keystone across all the services

To: openstack@xxxxxxxxxxxxxxxxxxx
From: Jay Pipes <jaypipes@xxxxxxxxx>
Date: Tue, 25 Jun 2013 14:56:38 -0400
In-reply-to: <B72E610B07ACA04782D817F6BF730B7C47296871@G4W3290.americas.hpqcorp.net>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130510 Thunderbird/17.0.6

On 06/25/2013 01:50 PM, Balle, Susanne wrote:

Hi

We are looking into how to best architect the propagation of account
state management changes in keystone across all the services. For
example, when we delete a customer domain and/or its tenants, it is
currently a multi-step process with potentially many manual tasks.  This
is error prone and does not scale.   Ideally, we would want the state
change in Keystone to dynamically propagate to all our services so they
can do things like provision or de-provision internal entities. We were
thinking of initially implementing some standard APIs in Keystone to
propagate the state change but are open to discussing the best
architectural path forward to solving this problem( e.g. Message queue,
standard API, etc).

Additionally we need to be able to do administrative functions like
delete a project and have that propagate throughout all the services and
perform the correct cleanup operations.


Hi Susanne,

This is what you are looking for:

https://blueprints.launchpad.net/keystone/+spec/notifications

Please lobby to get this done in Havana. Frankly, Keystone really shouldget aligned with the rest of the OpenStack projects WRT to notificationsand use oslo.notify.


Best,
-jay

Follow ups

Re: Propagation of account state management changes in keystone across all the services
From: Balle, Susanne, 2013-06-25

References

Propagation of account state management changes in keystone across all the services
From: Balle, Susanne, 2013-06-25