Extended websso parameters
- Allow LOGIN_REDIRECT_URL configuration
- Allow custom messages for WEBSSO_CHOICES
- Allow WEBSSO_IDP_MAPPING
Related-Bug: PROD-20122
Change-Id: Id336d42c5d4ead20d718bb28ade9a26c8bc1d573
diff --git a/README.rst b/README.rst
index afd5dce..1f90438 100644
--- a/README.rst
+++ b/README.rst
@@ -429,7 +429,9 @@
address: https://github.com/openstack/horizon.git
rev: stable/juno
-Enable WebSSO feature
+Enable WebSSO feature. Define a list of choices [supported choices: oidc, saml2], `credentials` choice will be automatically appended and choice description is predefined. DEPRECATED
+
+WebSSO with credentials and saml2
.. code-block:: yaml
@@ -439,10 +441,58 @@
websso:
login_url: "WEBROOT + 'auth/login/'"
logout_url: "WEBROOT + 'auth/logout/'"
+ login_redirect_url: "WEBROOT + 'project/'"
websso_choices:
- saml2
- - oidc
+Enable WebSSO feature. Define a map of choices in the following format: `{"<choice_name>": {"description": "<choice_description>"}`.
+
+WebSSO with saml2 and credentials
+
+.. code-block:: yaml
+
+ horizon:
+ server:
+ enabled: true
+ websso:
+ login_url: "WEBROOT + 'auth/login/'"
+ logout_url: "WEBROOT + 'auth/logout/'"
+ login_redirect_url: "WEBROOT + 'project/'"
+ websso_choices:
+ saml2:
+ description: "Security Assertion Markup Language"
+ credentials:
+ description: "Keystone Credentials"
+
+WebSSO with IDP mapping.
+
+.. code-block:: yaml
+
+ horizon:
+ server:
+ enabled: true
+ websso:
+ login_url: "WEBROOT + 'auth/login/'"
+ logout_url: "WEBROOT + 'auth/logout/'"
+ login_redirect_url: "WEBROOT + 'project/'"
+ websso_choices:
+ credentials:
+ description: "Keystone Credentials"
+ saml2:
+ description: "Security Assertion Markup Language"
+ oidc:
+ description: "OpenID Connect"
+ myidp_oidc:
+ description: "Acme Corporation - OpenID Connect"
+ myidp_saml2:
+ description: "Acme Corporation - SAML2"
+ idp_mapping:
+ myidp_oidc:
+ id: myidp
+ protocol: oidc
+ myidp_saml2:
+ id: myidp
+ protocol: saml2
More Information
================