Retrieve encryption root secret from Barbican

Code Issues Proposed changes

This patch adds support for retrieving the encryption root secret from
an external key management system. In practice, this is currently
limited to Barbican.
Change-Id: I1700e997f4ae6fa1a7e68be6b97539a24046e80b

This commit is contained in:

Mathias Bjoerkqvist

2016年09月02日 12:19:49 +00:00

parent 7c3d218b2b

commit 77bd74da09

10 changed files with 1236 additions and 24 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

6
setup.cfg

View File

@@ -63,6 +63,11 @@ scripts =

bin/swift-ring-builder-analyzer

bin/swift-temp-url

[extras]

kms_keymaster =

oslo.config>=4.0.0,!=4.3.0,!=4.4.0 # Apache-2.0

castellan>=0.7.0 # Apache-2.0

[entry_points]

paste.app_factory =

proxy = swift.proxy.server:app_factory

@@ -100,6 +105,7 @@ paste.filter_factory =

copy = swift.common.middleware.copy:filter_factory

keymaster = swift.common.middleware.crypto.keymaster:filter_factory

encryption = swift.common.middleware.crypto:filter_factory

kms_keymaster = swift.common.middleware.crypto.kms_keymaster:filter_factory

[build_sphinx]

all_files = 1

Retrieve encryption root secret from Barbican

6 setup.cfg Unescape Escape View File

6
setup.cfg

View File