Permalink
Commits on Sep 25, 2012
  1. utf-8 encode user keys in memcache (bug 1056373)

    Change-Id: I026dd4282742213e69c7aa02e109439b07a73c8e
    (cherry picked from commit 431e50a)
    dolph committed with heckj Sep 25, 2012
Commits on Sep 13, 2012
  1. Limit token revocation to tenant (bug 1050025)

    Change-Id: I7ebe0192b4900ad9475119a6d582233b37b31fb4
    dolph committed Sep 13, 2012
  2. Fixed trivally true tests (bug 983304)

    Change-Id: I3c66092ce54cab6d972f78857b4c386b69dcabe3
    dolph committed Sep 13, 2012
Commits on Sep 12, 2012
  1. Merge "LDAP backend attribute fixes"

    Jenkins committed with openstack-gerrit Sep 12, 2012
  2. Delete user tokens after role grant/revoke

    Delete user tokens when a new role is granted or revoked, in order to
    prevent old tokens to continue to be valid for the original set of
    roles for the remainder of the token's lifespan.
    
    Addresses CVE-2012-4413.
    Fixes bug 1041396.
    
    Change-Id: Iecf891f274b67408f568b949a7028362c4c30312
    dolph committed with ttx Sep 7, 2012
Commits on Sep 11, 2012
  1. LDAP backend attribute fixes

    R Boden and Adam Young assissted on this patch.
    
    There are two issues with the TenantAPI for the ldap Identity.
    
    There is a mistaken attribute_mapping entry, which was mapping
    'description' into 'desc'. Per RFC 2256 there should be no need to map
    this as the attribute as it is already 'description' in the LDAP
    schema. I am not aware of any other schema that would use 'desc'
    attribute for a 'groupOfNames' object.
    
    Since there is no support (yet) for users, tenants or roles to be
    enabled/disabled there needs to be a attribute_ignore set for the
    'enabled' attribute.
    
    Bug 980085
    
    Change-Id: I40afa7a1345c45c119e699bf4fd4c99652f66c2f
    dyarnell committed with Adam Young Sep 11, 2012
  2. Document memcached host system time configuration.

     * Addresses 1022614
    
    Change-Id: I81617c4eecd6fdfdb3f01eb674f7308d9c93baaa
    Maru Newby committed Sep 7, 2012
Commits on Sep 10, 2012
  1. Merge "Cleanup PEP8 errors from Common"

    Jenkins committed with openstack-gerrit Sep 10, 2012
  2. Implementation of tenant,user,role list functions for ldap

    Bug 983304
    
    Defines functions for the retrival and return of the tenant, user and
    role objects in ldap.  They will return in whatever order LDAP provides
    them.
    
    Additional fix for pep8 whitespace violation.
    
    Additional change to add some minimal unit tests for the new functions
    Tests have successfully run against a live LDAP server
    
    Change-Id: I368ae4097bb9bcdaab7bca0ccc2f9204d58f69d8
    dyarnell committed with Adam Young Apr 16, 2012
  3. Merge "Initialize Metadata variable"

    Jenkins committed with openstack-gerrit Sep 10, 2012
  4. Merge "PEP8 fix E251"

    Jenkins committed with openstack-gerrit Sep 10, 2012
Commits on Sep 8, 2012
  1. Initialize Metadata variable

    Otherwise, Metadata hands back as None, which breaks later on in the
    Authentication process. This is how the SQL backend worksi as well.
    
    Bug 1047848
    
    Change-Id: I53022bff73267c9526d69e1d2c8ec3c87b3b89fe
    Adam Young committed Sep 8, 2012
Commits on Sep 7, 2012
  1. Cleanup PEP8 errors from Common

    Change-Id: Ibd4fec8b38ba33168c271a8efed65dbf598bd372
    Adam Young committed Sep 7, 2012
Commits on Sep 6, 2012
  1. List tokens for memcached backend

    Creates and updates an index of tokens in a memcache entry keyed
    by the user id
    
    Bug 1046905
    
    Change-Id: If11d6b87b0a8ae5f8349f1ebb31790e943c70fbf
    Adam Young committed Sep 6, 2012
  2. Implement token endpoint list (bug 1006777)

    Change-Id: Ia7dad06ec763994ce0beb171c481ab01c20af6cb
    dolph committed Sep 6, 2012
  3. Ignore eclipse files.

    Change-Id: I3a9bb25b1fbdc696cee45e97e67dfb9af35e7718
    Adam Young committed Sep 6, 2012
Commits on Sep 5, 2012
  1. Sync some misc changes from openstack-common

    Syncs the following changes from stable/folsom:
    
     769ec65 Don't trap then re-raise ImportError.
     202b8b7 Fix spelling typos
     01b4f31 Support for marshalling datetime while preserving microseconds.
     c11a0d4 Remove unused imports
     9e1bd9d Add missing convert_instances arg.
     2d6f847 Track to_primitive() depth after iteritems().
     8c74b37 Improve exception from importutils.import_class().
     1fb2361 add import_object_ns function
    
    Change-Id: Id5885f4a00207cf70f15f195a154c45903111b8b
    markmc committed Sep 5, 2012
  2. Sync latest cfg from openstack-common

    Syncs the following changes from stable/folsom:
    
     4dc2043 cfg: clean up None value handling
     513bd3a Allow set_default and set_override to use None
     0a36c92 Tilde expansion for --config-file and --config-dir
     038d597 Add import_opt() method to ConfigOpts
     90da88c Modifies _is_opt_registered fcn to check for duplicate opts
     3af0786 cfg: Fix typo in documentation
     9f93872 Update common code to support pep 1.3. bug 1014216
     fb0f00e Use 'is not None' instead of '!= None'
     d1ec5ce Add support to include config aliases
    
    Also, exclude keystone/openstack/common from pep8 checks because
    it is pep8-checked in openstack-common anyway and all pep8 fixes
    would need to go into openstack-common first.
    
    Change-Id: Ie6354251942648c16c2be270af2b95f3f45e27ed
    markmc committed Sep 5, 2012
Commits on Sep 4, 2012
  1. Remove id_hash column

    Storing the token body in the database back end is expensive and
    not required.  This removes the storage, as well as updates
    the Database schema
    
    Bug 1046023
    
    Change-Id: Iee92ca7c2aeef04664883693b78ecfc1781fb335
    Adam Young committed Sep 4, 2012
  2. Merge "HACKING: Use single quotes"

    Jenkins committed with openstack-gerrit Sep 4, 2012
  3. Merge "Fixed typos in comment"

    Jenkins committed with openstack-gerrit Sep 4, 2012
  4. Merge "Removed unused imports"

    Jenkins committed with openstack-gerrit Sep 4, 2012
  5. Merge "PEP8 fix"

    Jenkins committed with openstack-gerrit Sep 4, 2012