Don't create admin user if there is LDAP backend set to read_only Change-Id: I907ef638f87b2e497cb5c0af3d9a1ffdefb97a23

commit: 43c8a18491e1ddd6ca9b8f2d5edc6b92e3bd9626 [log] [tgz]
author: Adam Tengler <atengler@mirantis.com> Fri Sep 08 09:54:31 2017 +0000
committer: Adam Tengler <atengler@mirantis.com> Wed Sep 13 12:44:28 2017 +0200
tree: 181131e84179cfdd151e6f7ad77399f4d72e8f23
parent: aebfff7ce0433403dd6dc6bd45685d002e4fdb95 [diff]
diff --git a/keystone/server.sls b/keystone/server.sls
index e330933..1548796 100644
--- a/keystone/server.sls
+++ b/keystone/server.sls

@@ -334,6 +334,8 @@
   - require:
     - keystone: keystone_service_tenant
 
+{%- if not server.get('ldap', {}).get('read_only', False) %}
+
 keystone_admin_user:
   keystone.user_present:
   - name: {{ server.admin_name }}
@@ -351,6 +353,8 @@
 
 {%- endif %}
 
+{%- endif %}
+
 {%- for service_name, service in server.get('service', {}).iteritems() %}
 
 keystone_{{ service_name }}_service:
commit	43c8a18491e1ddd6ca9b8f2d5edc6b92e3bd9626	[log] [tgz]
author	Adam Tengler <atengler@mirantis.com>	Fri Sep 08 09:54:31 2017 +0000
committer	Adam Tengler <atengler@mirantis.com>	Wed Sep 13 12:44:28 2017 +0200
tree	181131e84179cfdd151e6f7ad77399f4d72e8f23
parent	aebfff7ce0433403dd6dc6bd45685d002e4fdb95 [diff]