Implement barbican memcache security strategy Provides an option to authenticate and optionally encrtypt the token data stored in the cache: memcache_security_strategy = MAC/ENCRTYPT memcache_secret_key = secret_key Change-Id: Ia16c8b3d9e3089d9add49e641af0f6668fc7d87f Related-Prod: PROD-22099

commit: 1139fcc4a6d3914941c81520c6d35d648e56f871 [log] [tgz]
author: Oleksandr Bryndzii <obryndzii@mirantis.com> Thu Oct 04 12:58:30 2018 +0300
committer: Oleksandr Bryndzii <obryndzii@mirantis.com> Thu Oct 11 00:52:08 2018 +0300
tree: 3a1072800206a2329b8edce7072cb27e42cba212
parent: c2a6476fa9aac1febd957bfe78c2a4d64b06e13d [diff] [blame]
diff --git a/README.rst b/README.rst
index 0f4e655..33e32c7 100644
--- a/README.rst
+++ b/README.rst

@@ -412,6 +412,26 @@
 You can read more about it here:
     https://docs.openstack.org/security-guide/databases/database-access-control.html
 
+Barbican server with memcached caching and security strategy:
+
+.. code-block:: yaml
+
+    barbican:
+      server:
+        enabled: true
+        ...
+        cache:
+          engine: memcached
+          members:
+          - host: 127.0.0.1
+            port: 11211
+          - host: 127.0.0.1
+            port: 11211
+          security:
+            enabled: true
+            strategy: ENCRYPT
+            secret_key: secret
+
 Documentation and Bugs
 ======================
commit	1139fcc4a6d3914941c81520c6d35d648e56f871	[log] [tgz]
author	Oleksandr Bryndzii <obryndzii@mirantis.com>	Thu Oct 04 12:58:30 2018 +0300
committer	Oleksandr Bryndzii <obryndzii@mirantis.com>	Thu Oct 11 00:52:08 2018 +0300
tree	3a1072800206a2329b8edce7072cb27e42cba212
parent	c2a6476fa9aac1febd957bfe78c2a4d64b06e13d [diff] [blame]