Updated openstack/openstack

Project: openstack/keystone  a103486efeefca821ac722cbad6fc31b2e3f133b

Removing group role assignments results in overly broad revocation events

When a role on a group scoped to project/domain is revoked, it persists
revocation event in revoke_event table which is invalidating all tokens
created with same role in project/domain. Since token validations are happening
by populating role assignments at validation time, the need for persistence of
revocation events is no longer needed.

Change-Id: I112d5d4684f739d320606cea651e0a108f18d245
Closes-Bug: #1662514

This commit is contained in:

Jenkins

2017-03-02 18:39:40 +00:00

committed by

Gerrit Code Review

parent b060ddc314

commit 64fbbb1a2c

1 changed files with 1 additions and 1 deletions

2

keystone

 @ -1 +1 @@
 Subproject commit 900349583c9aad6ae4740a65827ea3770d9c5bae
 Subproject commit a103486efeefca821ac722cbad6fc31b2e3f133b

Updated openstack/openstack

2 keystone

2

keystone