openstack
/
keystone
Code Issues Proposed changes
keystone/keystone
History
Brant Knudson 729dcad738 LDAP fix for get_roles_for_user_and_project user=group ID 
When there was a role assigned to a group with the same ID as a
user, the LDAP assignment backend would incorrectly return the
assignment to the group when requesting roles for the user via
the get_roles_for_user_and_project method.

With this change, assignments to a group with the same ID are not
returned for the user when calling get_roles_for_user_and_project.

Functions were added to compare DNs more accurately based on the
LDAP RFCs.

The fakeldap code was changed to normalize the values when
comparing values for checking if the values match the filter.

Co-Authored By: Nathan Kinder <nkinder@redhat.com>
Co-Authored By: Adam Young <ayoung@redhat.com>

Change-Id: Ia6f1ae2e3af1e968f1a393bd4f2f38812a88a5d0
Closes-Bug: #1309228
 		2014-05-22 08:58:37 -05:00
..
assignment LDAP fix for get_roles_for_user_and_project user=group ID 2014-05-22 08:58:37 -05:00
auth Adding one more check on project_id 2014-04-15 18:38:33 +00:00
catalog Merge "Allow 'description' in V3 Regions to be optional" 2014-05-02 03:50:33 +00:00
common LDAP fix for get_roles_for_user_and_project user=group ID 2014-05-22 08:58:37 -05:00
contrib More random values for oAuth1 verifier 2014-04-30 17:10:53 +02:00
credential Fixed some typos throughout the codebase 2014-05-01 07:16:02 -07:00
hacking Fixed some typos throughout the codebase 2014-05-01 07:16:02 -07:00
identity Reduce excess LDAP searches 2014-05-07 17:40:05 -07:00
locale Remove all mostly untranslated PO files 2014-05-21 08:54:06 +02:00
middleware Fixed the size limit tests in Python 3 2014-05-05 11:27:42 +00:00
openstack Merge "Refactor service readiness notification" 2014-05-02 20:07:38 +00:00
policy Removes unused db_sync methods 2014-04-02 20:15:40 +00:00
tests LDAP fix for get_roles_for_user_and_project user=group ID 2014-05-22 08:58:37 -05:00
token Ensure token is a string 2014-05-01 14:56:16 -04:00
trust Refactor create_trust for readability 2014-05-06 12:56:40 +03:00
__init__.py Revert "Disable eventlet monkey-patching of DNS" 2013-05-10 10:24:48 -04:00
backends.py Isolate backend loading 2014-04-16 15:13:20 +10:00
clean.py Uses explicit imports for _ 2014-03-18 01:23:21 -07:00
cli.py Token Revocation Extension 2014-03-04 13:42:28 -05:00
config.py Merge "Remove vim header" 2014-02-13 03:43:19 +00:00
controllers.py Merge "Add a space after the hash for block comments" 2014-03-27 02:16:20 +00:00
exception.py List all forbidden attributes in the request body. 2014-04-07 16:56:27 +02:00
notifications.py Refactor notifications 2014-04-24 23:08:30 -07:00
routers.py Remove vim header 2014-02-08 23:54:04 +08:00
service.py Isolate backend loading 2014-04-16 15:13:20 +10:00