keystonemiddleware appears not to hash PKIZ tokens
Bug #1355125 reported by
Kirill Zaborsky
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
keystonemiddleware |
Fix Released
|
Critical
|
Brant Knudson | ||
python-keystoneclient |
Fix Released
|
Critical
|
Adam Young | ||
python-keystonemiddleware (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
It looks like Keystone hashes only PKI tokens [1] and test test_verify_
And that should make token revocation for PKIZ tokens broken.
[1] https:/
[2] https:/
description: | updated |
Changed in keystone: | |
importance: | Undecided → Critical |
Changed in keystonemiddleware: | |
importance: | Undecided → Critical |
Changed in keystone: | |
status: | New → Triaged |
Changed in keystonemiddleware: | |
status: | New → Triaged |
Changed in keystone: | |
milestone: | none → juno-3 |
tags: | added: pki |
Changed in keystonemiddleware: | |
assignee: | nobody → Adam Young (ayoung) |
tags: | added: security |
Changed in keystonemiddleware: | |
assignee: | Morgan Fainberg (mdrnstm) → Adam Young (ayoung) |
no longer affects: | keystone |
Changed in python-keystoneclient: | |
assignee: | nobody → Adam Young (ayoung) |
Changed in keystonemiddleware: | |
assignee: | Adam Young (ayoung) → Brant Knudson (blk-u) |
Changed in keystonemiddleware: | |
milestone: | none → 1.2.0 |
milestone: | 1.2.0 → 1.1.1 |
Changed in keystonemiddleware: | |
status: | Fix Committed → Fix Released |
Changed in python-keystoneclient: | |
importance: | Undecided → Critical |
Changed in python-keystoneclient: | |
milestone: | none → 0.11.0 |
Changed in python-keystoneclient: | |
status: | Fix Committed → Fix Released |
Changed in python-keystonemiddleware (Ubuntu): | |
status: | New → Fix Released |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/114646
Review: https:/