ó
mcc@sudd
lm
Z
ddlmZ
dZejeddddƒ
Zejdd	e	dd
ƒ
g
Z
d„Zd„Zd
S(iÿÿÿÿ(
tloading(
tcfgtservice_userttitles)Service token authentication type optionsthelpsÀ
Configuration options for service to service authentication using a service
token. These options allow sending a service token along with the user's token
when contacting external REST APIs.
tdmapi_send_service_user_tokentdefaults€
When True, if sending a user token to a REST API, also send a service token.

Dmapi often reuses the user token provided to the dmapi-api to talk to other REST
APIs, such as Cinder, Glance and Neutron. It is possible that while the user
token was valid when the request was made to Dmapi, the token may expire before
it reaches the other service. To avoid any failures, and to make it clear it is
Dmapi calling the service on the user's behalf, we include a service token along
with the user token. Should the user's token have expired, a valid service
token ensures the REST API request will still be accepted by the keystone
middleware.
c

CsD|jt
ƒ

|jtd
t
ƒ


tj|tƒ
tj|tƒ
dS(Ntgroup(tregister_groupRt
register_optstservice_user_optst
ks_loadingtregister_session_conf_optionstSERVICE_USER_GROUPtregister_auth_conf_options(
tconf((s</usr/lib/python2.7/site-packages/dmapi/conf/service_token.pyR	%s



cCsFi
tt
jƒt
jƒt
jd
ƒ
t
jdƒ
t
jdƒ
t6S(Ntpasswordt
v2passwordt
v3password(R
Rtget_session_conf_optionstget_auth_common_conf_optionstget_auth_plugin_conf_optionsR(((s</usr/lib/python2.7/site-packages/dmapi/conf/service_token.pyt	list_opts-s
1
N(
t
keystoneauth1RRtoslo_configR
R
tOptGroupRtBoolOpttFalseR
R	R(((s</usr/lib/python2.7/site-packages/dmapi/conf/service_token.pyt<module>s