openstack
/
keystone
Code Issues Proposed changes
keystone/keystone/contrib
History
Brant Knudson 6cbf835542 Fix revocation event handling with MySQL 
When MySQL is used to store revocation events, events are returned
from the database with the timestamps truncated to the second. This
causes a revocation event for a token (which has the issued_at
timestamp to the microsecond) to not match the revocation event and
therefore the token is not considered to be revoked.

The fix is to have the revocation events and token timestamps both
always be truncated to the second. This will cause all tokens for a
user that are issued within a second to be revoked when any of those
tokens are revoked, which shouldn't be a problem.

Conflicts:

	keystone/tests/test_v3_os_revoke.py

Change-Id: Ibd82b4ce910206dfd504c396614ae2ebed025e9b
Closes-Bug: #1347961
(cherry picked from commit 7aee6304f6)
 		2014-08-05 13:19:01 -05:00
..
access Remove vim header 2014-02-08 23:54:04 +08:00
admin_crud Remove vim header 2014-02-08 23:54:04 +08:00
ec2 Uses explicit imports for _ 2014-03-18 01:23:21 -07:00
endpoint_filter HEAD responses should return same status as GET 2014-07-08 22:38:20 -07:00
example Uses explicit imports for _ 2014-03-18 01:23:21 -07:00
federation Merge "Change the default version discovery URLs" 2014-03-25 04:31:48 +00:00
oauth1 Block delegation escalation of privilege 2014-06-12 12:01:06 -04:00
revoke Fix revocation event handling with MySQL 2014-08-05 13:19:01 -05:00
s3 Remove vim header 2014-02-08 23:54:04 +08:00
simple_cert Remove vim header 2014-02-08 23:54:04 +08:00
stats Clean StatsController unnecesary members 2014-02-17 16:25:52 -03:00
user_crud Adds Cloud Audit (CADF) Support for keystone authentication 2014-02-18 09:22:36 -06:00
__init__.py establish basic structure 2012-01-18 20:06:27 -08:00