cherry-pick the fix for lp bug 2021550 to victoria branch (#860)
* Allow users to disable wsgi socket rotation (#801)
The lp bug 1863232 introduced a new configuration option called
WSGISocketRotation which allows users to disable socket rotation on the apache
side. This patch will also allow setting this option on the charm side.
Commit 996f241 added support for new config option
'wsgi-rotation' but that name should have been
'wsgi-socket-rotation' in order to have a 1:1 relation
with the apache config it changes. The following patches
that implement this config are currently blocked until
this lands so that they can be synced before merge:
Merge pull request #830 from juju/bug/2028683/stable/victoria
[stable/victoria] Ensure get_requests_for_local_unit doesn't fail on incomplete relation (#824)
ec362cf...
by
Alex Kavanagh <email address hidden>
[stable/victoria] Ensure get_requests_for_local_unit doesn't fail on incomplete relation (#824)
If the certificates relation has been set from a consuming charm for
certificates, but the provider hasn't supplied a certificate, and the
request is in the 'legacy' form, then the get_request_for_local_unit()
function in cert_utils fails on accessing the (non-existant) 'ca'
parameter in the databag. This patch ensures that if the 'ca' key is
missing that the processing moves on to the next relation.
The keystone charm currently creates two service users, one for the
service domain (for v3 authentication), and the other for the default
domain (for v2 authentication).
This patch updates the [service_user] config to use the service
domain.
Closes-Bug: #2026202
(cherry picked from commit 3ed0675a763a32a5ecd89c448a2b7e8e3a9f63b3)
Add a new template to configure the service_user ini file section and
also add two needed parameters in keystone_authtoken configuration
(cherry picked from commit f8c8861b4f0cb2181792013f9a973b3924a1e831)
* Fixes for service tokens
* Make admin role configurable
* Move keystone_authtoken configuration from mitaka version to base
version
* Sync service_user config with keystone_authtoken for the base version
(cherry picked from commit 7bcb1942ad11aafa307d5872d7b36a7bd7908288)