keystonemiddleware

access rules verification does not work without service catalog

Bug #1933356 reported by Boris Bobrov on 2021-06-23

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	keystonemiddleware	New	Undecided	Unassigned

Bug Description

Steps to reproduce:

1. Create an application credential with an access rule in an identity server
2. Set up a service with keystonemiddleware
3. Set `include_service_catalog = false` for it (because there are issues with the eventlet service)
4. Create a token with the application credential and pass it with a request to the service

Expectation:

Access rules are being verified

Current behavior:

InvalidToken exception is being raised: https://github.com/openstack/keystonemiddleware/blob/f32fcc6623ccaf4c465700c23fa20f66c5c79daf/keystonemiddleware/auth_token/__init__.py#L575

See original description

Boris Bobrov (bbobrov) on 2021-06-23

description:

updated

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.