openstack
/
keystonemiddleware
Code Issues Proposed changes
keystonemiddleware/keystonemiddleware
History
Jorge Merlino 4f2bb39a5d Remove cache invalidation when using expired token 
This can create a race condition for long running services that reuse
their token (eg. Kubernetes Cinder CSI plugin) in this case for
example:

1 [user] Asks nova to attach a volume to a server
2 ...the user's token expires
3 [user] Asks cinder if the volume has been attached
4 [nova] Asks cinder to attach the volume

In step 3 the token is marked as invalid in the cache and step 4 fails
even if allow_expired is true

Closes-Bug: #1987355
Change-Id: Ice8e34440a5fe1baa370646ed70b5e085c4af70e
(cherry picked from commit e05466c5f4)
 		2023-06-06 15:39:56 +00:00
..
_common Fix misspell word 2019-09-09 09:02:14 +08:00
audit Make sure audit middleware use own context 2018-12-24 02:02:17 +00:00
auth_token Remove cache invalidation when using expired token 2023-06-06 15:39:56 +00:00
echo Replace six.iteritems() with .items() 2017-07-12 13:43:55 +07:00
locale Imported Translations from Zanata 2019-12-22 07:08:56 +00:00
tests Remove cache invalidation when using expired token 2023-06-06 15:39:56 +00:00
__init__.py Moving middleware to new location 2014-06-19 15:50:41 -07:00
ec2_token.py Fix several errors in CI 2023-06-02 14:12:01 +00:00
exceptions.py Create a Config object 2016-06-10 18:21:56 +00:00
fixture.py Remove use of positional decorator 2017-08-07 13:18:19 -07:00
i18n.py Update URLs in documentation 2017-07-20 16:38:16 +08:00
opts.py Move auth token opts calculation into auth_token 2016-06-13 14:03:23 -03:00
s3_token.py Fix several errors in CI 2023-06-02 14:12:01 +00:00