Add OS-FEDERATION to scoped federation tokens
Bug #1351038 reported by
Steve Martinelli
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Steve Martinelli |
Bug Description
Currently, when a federated user gets a token, it has an OS-FEDERATION section under 'user', which contains information about the idp and protocol.
However when the same user uses the unscoped token to get a scoped token, we should put the same information in there as well. This will help support revocation events for federated tokens, i.e. revoking all tokens based on IDP id.
Changed in keystone: | |
importance: | Undecided → Medium |
Changed in keystone: | |
milestone: | none → juno-3 |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | juno-3 → 2014.2 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/111070
Review: https:/