Deleting a role should revoke any tokens associated with it
Bug #1153645 reported by
Henry Nash
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
High
|
Henry Nash |
Bug Description
When we delete a role, we delete all the grants associated with it. Since this is a bit like an enforced revoking of user/groups grants, we should invalidate any tokens:
- for users that have had any grant using this role
- for users of any group that has had a grant using this role
Changed in keystone: | |
status: | New → Confirmed |
Changed in keystone: | |
milestone: | none → havana-rc1 |
Changed in keystone: | |
status: | Confirmed → In Progress |
Changed in keystone: | |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | havana-rc1 → 2013.2 |
To post a comment you must log in.
mark