OpenStack Identity (keystone)

Key PKI tokens on hash in memcached for auth_token middleware

Bug #1073343 reported by Adam Young on 2012-10-30

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Undecided	Adam Young	OpenStack Identity (keystone) 2013.1 "grizzly"
	Folsom	Fix Released	Medium	Adam Young	OpenStack Identity (keystone) 2012.2.4

Bug Description

PKI tokens are currently keyed on the whole token string. This is too long to fit into a cookie. Instead, we will key on the hash, and this can be stored in the cookie instead.

Adam Young (ayoung) on 2012-10-30

Changed in keystone:
assignee:	nobody → Adam Young (ayoung)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2012-10-31: Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/15116

Changed in keystone:
status:	New → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2012-11-02: Fix merged to keystone (master)

Reviewed: https://review.openstack.org/15116
Committed: http://github.com/openstack/keystone/commit/75496bbe6940e72fd42dcaacbfc92b6cf92b1149
Submitter: Jenkins
Branch: master

commit 75496bbe6940e72fd42dcaacbfc92b6cf92b1149
Author: Adam Young <email address hidden>
Date: Tue Oct 30 20:22:24 2012 -0400

    auth_token hash pki
    key PKI tokens on hash in memcached when accessed by auth_token
    middelware

Bug 1073343

Change-Id: I32e5481f82fd110c855d7e1138c3d43c73099bbb

Changed in keystone:
status:	In Progress → Fix Committed

Thierry Carrez (ttx) on 2012-11-22

Changed in keystone:
milestone:	none → grizzly-1
status:	Fix Committed → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2013-03-05: Fix proposed to keystone (stable/folsom)

Fix proposed to branch: stable/folsom
Review: https://review.openstack.org/23564

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2013-04-03: Fix merged to keystone (stable/folsom)

Reviewed: https://review.openstack.org/23564
Committed: http://github.com/openstack/keystone/commit/40660f02b58f5712911532c67f0a6dc0b83dc5dd
Submitter: Jenkins
Branch: stable/folsom

commit 40660f02b58f5712911532c67f0a6dc0b83dc5dd
Author: Adam Young <email address hidden>
Date: Tue Oct 30 20:22:24 2012 -0400

    auth_token hash pki
    key PKI tokens on hash in memcached when accessed by auth_token
    middelware

(cherry picked from commit 75496bbe6940e72fd42dcaacbfc92b6cf92b1149)

Bug 1073343

Change-Id: I32e5481f82fd110c855d7e1138c3d43c73099bbb

Thierry Carrez (ttx) on 2013-04-04

Changed in keystone:
milestone:	grizzly-1 → 2013.1

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.