1419043
|
#1419043 |
Conflict on isolated credential setup
|
|
2
Critical
|
Matthew Treinish
|
10
Fix Released
|
1419187
|
#1419187 |
ldap unicode issue with mapping id generator
|
|
2
Critical
|
Henry Nash
|
10
Fix Released
|
1427533
|
#1427533 |
keystone logs password in log message
|
|
2
Critical
|
Dolph Mathews
|
10
Fix Released
|
1437032
|
#1437032 |
keystone policy.json breaks oslo.policy
|
|
2
Critical
|
Steve Martinelli
|
10
Fix Released
|
1446583
|
#1446583 |
services no longer reliably stop in stable/liberty / master
|
|
2
Critical
|
Brant Knudson
|
10
Fix Released
|
1383676
|
#1383676 |
endless loop when deleting region
|
|
3
High
|
wanghong
|
10
Fix Released
|
1383817
|
#1383817 |
Deprecate catalog replacements and whitelists
|
|
3
High
|
David Stanek
|
10
Fix Released
|
1384382
|
#1384382 |
GET /OS-FEDERATION/saml2/metadata does not work
|
|
3
High
|
Lance Bragstad
|
10
Fix Released
|
1385533
|
#1385533 |
Domain tokens issued from a saml2 auth incorrectly includes group roles marked as inherited
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1389752
|
#1389752 |
Project tokens issued from a saml2 auth are missing inherited group roles
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1390124
|
#1390124 |
No validation between client's IdP and Keystone IdP
|
|
3
High
|
Marco Fargetta
|
10
Fix Released
|
1390640
|
#1390640 |
/auth/domains incorrectly includes domains with only user inherited roles
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1396763
|
#1396763 |
user id beginning with 0 cannot authenticate through ldap
|
|
3
High
|
Steve Martinelli
|
10
Fix Released
|
1399768
|
#1399768 |
migration of endpoint_filter fails due to foreign key constraint
|
|
3
High
|
Dave Chen
|
10
Fix Released
|
1400362
|
#1400362 |
check and delete policy_association_for_region_and_service performs create
|
|
3
High
|
Adam Young
|
10
Fix Released
|
1402916
|
#1402916 |
unable to validate signature from a keystone issued SAML assertion
|
|
3
High
|
Guang Yee
|
10
Fix Released
|
1403068
|
#1403068 |
Tests fail with python 2.7.9
|
|
3
High
|
James Page
|
10
Fix Released
|
1406826
|
#1406826 |
master keystone.conf sample is out of sync
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1407273
|
#1407273 |
Unit tests failing with deprecation errors setuptools 10.2
|
|
3
High
|
Brant Knudson
|
10
Fix Released
|
1407661
|
#1407661 |
keystone with LDAP identity complains about invalid input for trustor_user_id
|
|
3
High
|
Steve Martinelli
|
10
Fix Released
|
1410850
|
#1410850 |
Multiple SQL backend check fails
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1411411
|
#1411411 |
keystone sample config is out of date
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1411478
|
#1411478 |
Any attribute that is equal to 'TRUE' or 'FALSE' is treated as boolean by LDAP drivers
|
|
3
High
|
Lin Hua Cheng
|
10
Fix Released
|
1415959
|
#1415959 |
Role cache details are actually using the assignment values
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1416459
|
#1416459 |
Disabling identity providers doesn't work
|
|
3
High
|
Marek Denis
|
10
Fix Released
|
1419853
|
#1419853 |
TypeError with Apache and memcache_pool as cache backend
|
|
3
High
|
Boris Bobrov
|
10
Fix Released
|
1420141
|
#1420141 |
Sporadic failures when testing versions
|
|
3
High
|
Steve Martinelli
|
10
Fix Released
|
1423250
|
#1423250 |
Terminating neutron-server leads to waitall() inside a GreenPool's greenthread
|
|
3
High
|
Elena Ezhova
|
10
Fix Released
|
1426310
|
#1426310 |
The identity API spec includes examples of the email attribute
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1426334
|
#1426334 |
DB migration problem with federation extension
|
|
3
High
|
Morgan Fainberg
|
10
Fix Released
|
1426448
|
#1426448 |
Identity API spec for creating domain-config should be PUT not POST
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1427437
|
#1427437 |
LDAP debug logging during unit tests brings us close to causing jenkins to fail our tests
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1428251
|
#1428251 |
unable to generate saml assertion
|
|
3
High
|
Steve Martinelli
|
10
Fix Released
|
1428600
|
#1428600 |
Domain Config updates for specific group/option don't honor NotFound
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1428949
|
#1428949 |
Fernet tokens do not support domain scopes
|
|
3
High
|
Morgan Fainberg
|
10
Fix Released
|
1429556
|
#1429556 |
Identity API for domain-config should define separate resources for group/option
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1429557
|
#1429557 |
Mark domain-config API as experimental in Identity spec
|
|
3
High
|
Henry Nash
|
10
Fix Released
|
1429663
|
#1429663 |
local tests failing fernet tests
|
|
3
High
|
Brant Knudson
|
10
Fix Released
|
1430433
|
#1430433 |
Fernet token validation doesn't return catalog and role information for domain scoped tokens
|
|
3
High
|
Lance Bragstad
|
10
Fix Released
|
1431434
|
#1431434 |
user creation with fernet tokens results in 401
|
|
3
High
|
|
10
Fix Released
|
1431669
|
#1431669 |
Fernet TypeError: token must be bytes.
|
|
3
High
|
Dolph Mathews
|
10
Fix Released
|
1433372
|
#1433372 |
Fernet tokens with base64 padding are not URL-safe
|
|
3
High
|
Dolph Mathews
|
10
Fix Released
|
1434701
|
#1434701 |
websso should compare remote_id_attribute to remote_id of IdP
|
|
3
High
|
Nathan Kinder
|
10
Fix Released
|
1434916
|
#1434916 |
GET /v3/projects/project_id with parents_as_list or subtree_as_list option is leaking extra data
|
|
3
High
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1440185
|
#1440185 |
Identity provider create fails if remote_id is not set
|
|
3
High
|
Nathan Kinder
|
10
Fix Released
|
1440493
|
#1440493 |
Crash with python-memcached==1.5.4
|
|
3
High
|
Alexander Makarov
|
10
Fix Released
|
1441386
|
#1441386 |
keystone-manage domain_config_upload command yield "'CacheRegion' object has no attribute 'expiration_time'"
|
|
3
High
|
|
10
Fix Released
|
1441393
|
#1441393 |
Keystone and Ceilometer unit tests fail with pymongo 3.0
|
|
3
High
|
|
10
Fix Released
|
1441827
|
#1441827 |
Cannot set per protocol remote_id_attribute
|
|
3
High
|
|
10
Fix Released
|
1443598
|
#1443598 |
[OSSA 2015-008] backend_argument containing a password leaked in logs (CVE-2015-3646)
|
|
3
High
|
Doug Hellmann
|
10
Fix Released
|
1241134
|
#1241134 |
Using LDAP with enabled ignored, no error when attempt to change
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1261468
|
#1261468 |
domain-scoped token has "None" for tenant_id replacement
|
|
4
Medium
|
Dave Chen
|
10
Fix Released
|
1268977
|
#1268977 |
v3 credentials project is not optional for type=ec2
|
|
4
Medium
|
Lin Hua Cheng
|
10
Fix Released
|
1278739
|
#1278739 |
trusts in keystone fail in backend when impersonation is not provided
|
|
4
Medium
|
Lance Bragstad
|
10
Fix Released
|
1292591
|
#1292591 |
Database models differs from migrations.
|
|
4
Medium
|
Viktor Serhieiev
|
10
Fix Released
|
1308778
|
#1308778 |
keystone-manage ssl_setup does not overwrite existing files
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1348818
|
#1348818 |
Unittests do not succeed with random PYTHONHASHSEED value
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1381768
|
#1381768 |
AttributeError: 'module' object has no attribute 'LDAP_CONTROL_PAGE_OID' with python-ldap 2.4
|
|
4
Medium
|
Nathan Kinder
|
10
Fix Released
|
1381809
|
#1381809 |
Domain aware policy should restrict certain operations to cloud admin
|
|
4
Medium
|
Nathan Kinder
|
10
Fix Released
|
1384775
|
#1384775 |
revoke driver default should be the non-deprecated driver
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1384789
|
#1384789 |
XmlBodyMiddleware driver is deprecated, probably shouldn't still be the default
|
|
4
Medium
|
Lance Bragstad
|
10
Fix Released
|
1385643
|
#1385643 |
/auth/domains incorrectly includes domains with only group inherited roles
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1385694
|
#1385694 |
/auth/projects fails to include any projects that have inherited group roles
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1386376
|
#1386376 |
Validation parameter_type.url regex doesn't pass validation for IPv6 addresses
|
|
4
Medium
|
Matthew Edmonds
|
10
Fix Released
|
1387401
|
#1387401 |
token_flush can hang if lots of tokens
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1390085
|
#1390085 |
if REMOTE_USER is returned from apache plugin, it shouldn't need to be mapped
|
|
4
Medium
|
Marek Denis
|
10
Fix Released
|
1392584
|
#1392584 |
OAuth headers are missing when using Apache
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1393518
|
#1393518 |
v3 service catalog returns services without names, but v2.0 api does not
|
|
4
Medium
|
Lin Hua Cheng
|
10
Fix Released
|
1395117
|
#1395117 |
Create SAML assertion using domain scoped tokens returns 500 (Internal Server Error)
|
|
4
Medium
|
Rodrigo Duarte
|
10
Fix Released
|
1395688
|
#1395688 |
Memcache distributed lock ruins HA
|
|
4
Medium
|
Alexander Makarov
|
10
Fix Released
|
1397207
|
#1397207 |
keystone-manage db_version --extension shows incorrect help info
|
|
4
Medium
|
Jun Xie
|
10
Fix Released
|
1398470
|
#1398470 |
sql migration helpers incorrectly inspect for FKs
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1399857
|
#1399857 |
delete endpoint policy returns HTTP 500
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1400565
|
#1400565 |
ValueError when running Keystone tests
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1401108
|
#1401108 |
Memcache pool locks on release
|
|
4
Medium
|
Alexander Makarov
|
10
Fix Released
|
1401721
|
#1401721 |
Update role using LDAP backend with same name fails
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1403277
|
#1403277 |
should invalidate cache when updating catalog objects successfully
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1403929
|
#1403929 |
Improve clarity, encapsulation and performance of assignment type calculation
|
|
4
Medium
|
Alexander Makarov
|
10
Fix Released
|
1406627
|
#1406627 |
Inheritance info must be stored inside scope on test_v3_assignment
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1406667
|
#1406667 |
Return 400 for invalid filter combinations on /role_assignments API
|
|
4
Medium
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1406938
|
#1406938 |
Check of targets and actors on Assignment Controller should report a better error message
|
|
4
Medium
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1408384
|
#1408384 |
Providers must be created only once
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1408658
|
#1408658 |
migration 61 downgrade fails using mysql
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1408930
|
#1408930 |
endpoint_group_update does parameter check after updating endpoint_group
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1409716
|
#1409716 |
migration 61 downgrade test failure on non-sqlite
|
|
4
Medium
|
Boris Bobrov
|
10
Fix Released
|
1410182
|
#1410182 |
project schema misses parent_id
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1414961
|
#1414961 |
regex bypasses eval_type in federation mapping rules
|
|
4
Medium
|
Zhiyuan Cai
|
10
Fix Released
|
1415271
|
#1415271 |
user_enabled_attribute string support is poor
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1416767
|
#1416767 |
event_type for role assignment notifications is incorrect
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1417366
|
#1417366 |
a normal user can get other user's ec2credential
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1417451
|
#1417451 |
SQL User & Group entities still have FK to domain
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1417522
|
#1417522 |
a normal user can delete other user's ec2 credentials
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1417737
|
#1417737 |
KVS cache backend incompatible with redis-py
|
|
4
Medium
|
Alexander Makarov
|
10
Fix Released
|
1417835
|
#1417835 |
for CADF notifications, the initiator's ID (not name) should be user_id
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1419919
|
#1419919 |
gate-requirements-integration-dsvm fails on stable/juno with ValueError for missing 2014.2.3
|
|
4
Medium
|
Matt Riedemann
|
10
Fix Released
|
1420788
|
#1420788 |
Logging blocks on race condition under eventlet
|
|
4
Medium
|
Alexander Makarov
|
10
Fix Released
|
1421092
|
#1421092 |
assertTableColumns always passes
|
|
4
Medium
|
wanghong
|
10
Fix Released
|
1421668
|
#1421668 |
Tenant in v2 token response has parent_project_id
|
|
4
Medium
|
Lin Hua Cheng
|
10
Fix Released
|
1421971
|
#1421971 |
get_endpoint_group_in_project missing from sample policy files
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1423022
|
#1423022 |
List Tenants in v2 response has parent_id
|
|
4
Medium
|
Lin Hua Cheng
|
10
Fix Released
|
1424089
|
#1424089 |
Use SystemRandom rather than random
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1424500
|
#1424500 |
Federation list projects endpoint does not honor project inherited role assignments
|
|
4
Medium
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1424745
|
#1424745 |
SQL/LDAP are not able to honor multiple filters in driver_hints.Hints()
|
|
4
Medium
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1427379
|
#1427379 |
AttributeError: 'Assignment' object has no attribute 'get_domain_by_name'
|
|
4
Medium
|
Matthew Edmonds
|
10
Fix Released
|
1427440
|
#1427440 |
V2 only keystone wont start - revoke not in loaded backends
|
|
4
Medium
|
Steve Martinelli
|
10
Fix Released
|
1427485
|
#1427485 |
Fernet tokens contain a version identifier that is not integrity verified
|
|
4
Medium
|
Morgan Fainberg
|
10
Fix Released
|
1428717
|
#1428717 |
Fernet tokens have redundant creation timestamps
|
|
4
Medium
|
Dolph Mathews
|
10
Fix Released
|
1428829
|
#1428829 |
Fernet tokens don't return audit_ids
|
|
4
Medium
|
Dolph Mathews
|
10
Fix Released
|
1429334
|
#1429334 |
Unmatched Groups in Federation Mapping raise errors
|
|
4
Medium
|
Adam Young
|
10
Fix Released
|
1430062
|
#1430062 |
Fernet token response has wrong methods
|
|
4
Medium
|
Morgan Fainberg
|
10
Fix Released
|
1434103
|
#1434103 |
SQL schema downgrades are no longer supported
|
|
4
Medium
|
Morgan Fainberg
|
10
Fix Released
|
1434599
|
#1434599 |
ec2 signature possible errors
|
|
4
Medium
|
Dave Chen
|
10
Fix Released
|
1435174
|
#1435174 |
SSLTestCase errors when building Debian package
|
|
4
Medium
|
Morgan Fainberg
|
10
Fix Released
|
1435312
|
#1435312 |
v2 and v3 get catalog pass unused metadata parameter
|
|
4
Medium
|
Henry Nash
|
10
Fix Released
|
1435396
|
#1435396 |
No notifications for role grants using v2
|
|
4
Medium
|
Brant Knudson
|
10
Fix Released
|
1435487
|
#1435487 |
ServiceProviderModel has wrong attributes for auth_url and sp_url
|
|
4
Medium
|
Rodrigo Duarte
|
10
Fix Released
|
1441164
|
#1441164 |
Error in migration 066_fixup_service_name_value.py
|
|
4
Medium
|
Viktor Serhieiev
|
10
Fix Released
|
1441300
|
#1441300 |
keystone-manage man page updates
|
|
4
Medium
|
|
10
Fix Released
|
1177623
|
#1177623 |
keystone reports internal error when policy.json is broken
|
|
5
Low
|
Lance Bragstad
|
10
Fix Released
|
1289115
|
#1289115 |
check_signature syntax error
|
|
5
Low
|
Dave Chen
|
10
Fix Released
|
1330132
|
#1330132 |
Creation of Member role is no longer required
|
|
5
Low
|
Dolph Mathews
|
10
Fix Released
|
1365147
|
#1365147 |
No test for tokens using inherited domain role
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1367778
|
#1367778 |
Extract Assignment related tests from IdentityTestCase
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1368772
|
#1368772 |
fakeldap search with SUBTREE scope does not return the base entry
|
|
5
Low
|
Nathan Kinder
|
10
Fix Released
|
1370022
|
#1370022 |
Keystone cannot cope with being behind an SSL terminator for version list
|
|
5
Low
|
Andrey Pavlov
|
10
Fix Released
|
1377101
|
#1377101 |
Obsolete deployment docs
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1380477
|
#1380477 |
a tiny issue in docstring
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1384112
|
#1384112 |
endpoint, service, region can not be updated when using kvs driver
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1384409
|
#1384409 |
UnicodeDecodeError when trying to create a user with DEBUG logging turned on
|
|
5
Low
|
Lance Bragstad
|
10
Fix Released
|
1384457
|
#1384457 |
Self value in Link is wrong in GET /OS-REVOKE/events
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1385405
|
#1385405 |
Domain backed by a populated read-only domain-specific LDAP identity backend cannot be deleted
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1389583
|
#1389583 |
_handle_saml2_tokens() should be renamed to something more generic
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1389586
|
#1389586 |
lack of debug logging for federation flows
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1389623
|
#1389623 |
Duplicate code in test_v3_federation
|
|
5
Low
|
Lance Bragstad
|
10
Fix Released
|
1390484
|
#1390484 |
Missing "s" in keystone configuration document.
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1392155
|
#1392155 |
The cloud_admin should be able to get the list of projects in all domains.
|
|
5
Low
|
Takashi Natsume
|
10
Fix Released
|
1394816
|
#1394816 |
sample_data.sh does not work with default options in keystone.conf
|
|
5
Low
|
Guang Yee
|
10
Fix Released
|
1396083
|
#1396083 |
Improve List Role Assignments Tests
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1397899
|
#1397899 |
A database index missing in a model class but declared in a migration.
|
|
5
Low
|
Viktor Serhieiev
|
10
Fix Released
|
1398165
|
#1398165 |
Unable to update a region description to None
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1398656
|
#1398656 |
ceilometer import oslo.concurrency failed issue
|
|
5
Low
|
ZhiQiang Fan
|
10
Fix Released
|
1403136
|
#1403136 |
Create tenants, users, and roles in OpenStack Installation Guide for Ubuntu 14.04 - juno
|
|
5
Low
|
Lance Bragstad
|
10
Fix Released
|
1404354
|
#1404354 |
SAWarning using empty IN on assignment.actor_id
|
|
5
Low
|
Brant Knudson
|
10
Fix Released
|
1404819
|
#1404819 |
wrong self link in the response of endpoint_groups API
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1405673
|
#1405673 |
db_sync downgrade from 44 to 43 fails
|
|
5
Low
|
Boris Bobrov
|
10
Fix Released
|
1405710
|
#1405710 |
contrib/endpoint_filter/backends/sql.py should not return db object
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1406172
|
#1406172 |
the code of get_token_provider in token.provider.py does not match docstring
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1406315
|
#1406315 |
multiple non-working migrations
|
|
5
Low
|
Boris Bobrov
|
10
Fix Released
|
1406393
|
#1406393 |
Doc string info on exceptions incorrect for a number of assignment driver methods
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1407105
|
#1407105 |
Password Change Doesn't Affirmatively Invalidate Sessions
|
|
5
Low
|
Dolph Mathews
|
10
Fix Released
|
1407342
|
#1407342 |
Incorrect comment about circular dependency in assignment manager
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1407861
|
#1407861 |
tests of endpoint_filter should check the number of endpoints
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1408389
|
#1408389 |
Tests shouldn't rely on provider registration by import
|
|
5
Low
|
Brant Knudson
|
10
Fix Released
|
1409201
|
#1409201 |
Typos in configuration.rst
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1409203
|
#1409203 |
Formatting in configuration.rst
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1409205
|
#1409205 |
Role inheritance section in configuration.rst is outdated
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1409211
|
#1409211 |
Unnecessary checks when cleaning up a domain
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1410170
|
#1410170 |
obsolete help text of os_inherit
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1410389
|
#1410389 |
If service name is not passed, set it to an empty string
|
|
5
Low
|
Lin Hua Cheng
|
10
Fix Released
|
1410748
|
#1410748 |
Incorrectly named test in backend FilterTests
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1410750
|
#1410750 |
test_backend has an sql specific test in it
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1410922
|
#1410922 |
notifications.py missing several docstrings
|
|
5
Low
|
David Stanek
|
10
Fix Released
|
1413459
|
#1413459 |
test_ec2_list_credentials does a wrong test
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1413905
|
#1413905 |
some exception messages of trust manager are not formatted
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1414627
|
#1414627 |
check whether V2 token is revoked has been performed twice
|
|
5
Low
|
Dave Chen
|
10
Fix Released
|
1414909
|
#1414909 |
In some tests, calls to role_api still go via assignment_api
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1415169
|
#1415169 |
We don't make the dependency clear between identity and resource/assignment LDAP
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1415190
|
#1415190 |
list_user_projects method at assignment manager needs to be removed
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1416303
|
#1416303 |
response of v3 OS-EC2 API doesn't contain links field
|
|
5
Low
|
wanghong
|
10
Fix Released
|
1418398
|
#1418398 |
role not found and assignment not found mix up together
|
|
5
Low
|
Dave Chen
|
10
Fix Released
|
1418830
|
#1418830 |
Document Bug: service API works different than github doc (documented find by name but code work by type) - Openstack CLI
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1418868
|
#1418868 |
duplicate operations when deleting tokens
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1419106
|
#1419106 |
potential race condition with member role creation
|
|
5
Low
|
Guang Yee
|
10
Fix Released
|
1419114
|
#1419114 |
Nova api 'Authorization failed for token' with federated scoped token
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1420120
|
#1420120 |
oauth request token can created with a project that doesn't exist
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1420121
|
#1420121 |
check if oauth headers are available before creating request token
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1420688
|
#1420688 |
keystone notification context is empty
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1421966
|
#1421966 |
Getting role for trust is double-protected
|
|
5
Low
|
Lin Hua Cheng
|
10
Fix Released
|
1422994
|
#1422994 |
Backend role tests have duplicate test for get_role
|
|
5
Low
|
Henry Nash
|
10
Fix Released
|
1424749
|
#1424749 |
test_multiple_filters uses an invalid filter that is ignored
|
|
5
Low
|
Samuel de Medeiros Queiroz
|
10
Fix Released
|
1426704
|
#1426704 |
"Installing Keystone" document is outdated
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1427509
|
#1427509 |
add oauth authentication to config file
|
|
5
Low
|
Matthieu Huin
|
10
Fix Released
|
1428945
|
#1428945 |
add project id to initiator data for auditing
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1429338
|
#1429338 |
add CADF notifications for oauth functions
|
|
5
Low
|
Steve Martinelli
|
10
Fix Released
|
1431088
|
#1431088 |
eventlet_server options reporting as deprecated
|
|
5
Low
|
Brant Knudson
|
10
Fix Released
|
1431377
|
#1431377 |
service provider object accepts null values for mandatory fields
|
|
5
Low
|
Rodrigo Duarte
|
10
Fix Released
|
1432191
|
#1432191 |
Logs useless debugging issue with external auth
|
|
5
Low
|
Brant Knudson
|
10
Fix Released
|
1434620
|
#1434620 |
default_lock_timeout units are not documented
|
|
5
Low
|
Morgan Fainberg
|
10
Fix Released
|
1434653
|
#1434653 |
Empty mappring engine white/black lists should be treated differently than lack of them.
|
|
5
Low
|
Marek Denis
|
10
Fix Released
|
1440123
|
#1440123 |
keystone-manage fails if optional fernet packages not installed
|
|
5
Low
|
Brant Knudson
|
10
Fix Released
|
1440538
|
#1440538 |
Fix typo in oslo_messaging/_drivers/protocols/amqp/opts.py
|
|
5
Low
|
SHIGEMATSU Mitsuhiro
|
10
Fix Released
|
1271273
|
#1271273 |
Policy testing checks could be simplified in test_v3_filters
|
|
6
Wishlist
|
Adam Young
|
10
Fix Released
|
1299039
|
#1299039 |
Token Scoping
|
|
6
Wishlist
|
Adam Young
|
10
Fix Released
|
1324610
|
#1324610 |
tools/config/generate_sample.sh has no effect on OS X
|
|
6
Wishlist
|
Dolph Mathews
|
10
Fix Released
|
1348262
|
#1348262 |
PKI and PKIZ tokens contain unnecessary whitespace
|
|
6
Wishlist
|
Alexander Makarov
|
10
Fix Released
|
1390100
|
#1390100 |
do not depend on protocol specific id's when creating a federation token
|
|
6
Wishlist
|
Rodrigo Duarte
|
10
Fix Released
|
1398347
|
#1398347 |
LDAP backend should do filtered query instead of getting all data and then filtering
|
|
6
Wishlist
|
Henry Nash
|
10
Fix Released
|
1406721
|
#1406721 |
RoleNotFound exception not tested for grant APIs
|
|
6
Wishlist
|
Henry Nash
|
10
Fix Released
|
1407540
|
#1407540 |
Identity driver has unused pointer to assignment
|
|
6
Wishlist
|
Henry Nash
|
10
Fix Released
|
1411517
|
#1411517 |
add schema for endpoint group
|
|
6
Wishlist
|
Lin Hua Cheng
|
10
Fix Released
|
1412846
|
#1412846 |
Cannot chain a trust with a role specified by name
|
|
6
Wishlist
|
Morgan Fainberg
|
10
Fix Released
|
1426128
|
#1426128 |
Add ECP related bits to saml generation code
|
|
6
Wishlist
|
Steve Martinelli
|
10
Fix Released
|
1428321
|
#1428321 |
Crosslink keystone documentation sites
|
|
6
Wishlist
|
Dave Chen
|
10
Fix Released
|
1438529
|
#1438529 |
Assignment manager uses .driver. unnecessarily in many places
|
|
6
Wishlist
|
Henry Nash
|
10
Fix Released
|
1438983
|
#1438983 |
The directory holding dev docs is "doc" instead of "docs".
|
|
6
Wishlist
|
DWang
|
10
Fix Released
|