From 5323ee7802e4913f1bcac9e3d77d45a1734dd690 Mon Sep 17 00:00:00 2001
From: Richard Avelar <csravelar@gmail.com>
Date: Wed, 29 Mar 2017 15:06:18 +0000
Subject: [PATCH] Remove unused revocation check in revoke_models

This patch addresses [1] by removing the corresponding check in
revocation models. There is no longer a need to check a token against
the revocation table for access_token when we no longer persist them
in a revocation event. This is due to token providers handling this
when rebuilding a token at validation time.

[1]: I4dc766981a29b0afd0a44718c1c5d81155163982
partial-bug: 1671887

Change-Id: I5a50ab9cdca64005e1e4a6738ee6a8accf458ed8
---
 keystone/models/revoke_model.py | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/keystone/models/revoke_model.py b/keystone/models/revoke_model.py
index 78917cb5dd..28867cce0b 100644
--- a/keystone/models/revoke_model.py
+++ b/keystone/models/revoke_model.py
@@ -193,10 +193,6 @@ def matches(event, token_values):
             token_values['consumer_id'],):
         return False
 
-    if event.access_token_id is not None and event.access_token_id not in (
-            token_values['access_token_id'],):
-        return False
-
     if event.audit_chain_id is not None and event.audit_chain_id not in (
             token_values['audit_chain_id'],):
         return False