openstack
/
keystone
Code Issues Proposed changes

Remove unused revocation check in revoke_models 

This patch addresses [1] by removing the corresponding check in
revocation models. There is no longer a need to check a token against
the revocation table for access_token when we no longer persist them
in a revocation event. This is due to token providers handling this
when rebuilding a token at validation time.

[1]: I4dc766981a29b0afd0a44718c1c5d81155163982
partial-bug: 1671887

Change-Id: I5a50ab9cdca64005e1e4a6738ee6a8accf458ed8
This commit is contained in:
Richard Avelar 2017-03-29 15:06:18 +00:00
parent 2dbd5d99bb
commit 5323ee7802
1 changed files with 0 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
keystone/models/revoke_model.py
View File

@ -193,10 +193,6 @@ def matches(event, token_values):
token_values['consumer_id'],):
return False
if event.access_token_id is not None and event.access_token_id not in (
token_values['access_token_id'],):
return False
if event.audit_chain_id is not None and event.audit_chain_id not in (
token_values['audit_chain_id'],):
return False