commit 8f9e3888d7e0207b44958cd98144965bb7a92792
author Oleksandr Bryndzii <obryndzii@mirantis.com> Fri Sep 28 23:08:56 2018 +0000
committer Oleksandr Bryndzii <obryndzii@mirantis.com> Tue Oct 09 17:41:35 2018 +0300
tree c44e88eb4d507aa98bb6d0f8d5d48c928d98e521
parent 9b80ba08ffdb494bb8fdcda678924607fe894aea

Implement cinder memcache security strategy

Provides an option to authenticate and optionally encrypt the token
data stored in the cache:
memcache_security_strategy = MAC/ENCRYPT
memcache_secret_key = secret_key

Change-Id: I06dc593e930992291147614d111aa8c34d9f7ee5
Related-Prod: PROD-22099

README.rst

diff --git a/README.rst b/README.rst
index 3a081dc..2713758 100644
--- a/README.rst
+++ b/README.rst
@@ -796,6 +796,46 @@
 You can read more about it here:
     https://docs.openstack.org/security-guide/databases/database-access-control.html
 
+Cinder services on compute node with memcached caching and security strategy:
+
+.. code-block:: yaml
+
+    cinder:
+      volume:
+        enabled: true
+        ...
+        cache:
+          engine: memcached
+          members:
+          - host: 127.0.0.1
+            port: 11211
+          - host: 127.0.0.1
+            port: 11211
+          security:
+            enabled: true
+            strategy: ENCRYPT
+            secret_key: secret
+
+Cinder services on controller node with memcached caching and security strategy:
+
+.. code-block:: yaml
+
+    cinder:
+      controller:
+        enabled: true
+        ...
+        cache:
+          engine: memcached
+          members:
+          - host: 127.0.0.1
+            port: 11211
+          - host: 127.0.0.1
+            port: 11211
+          security:
+            enabled: true
+            strategy: ENCRYPT
+            secret_key: secret
+
 Upgrades
 ========