OpenStack Identity (keystone)

Keystone middleware makes two token validation calls in positive scenario

Bug #927627 reported by Unmesh Gurjar on 2012-02-06

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Wishlist	Jesse Andrews	OpenStack Identity (keystone) 2012.1 "essex"

Bug Description

I am using the Keystone stable/diablo branch. I noticed that the Keystone middleware makes 2 Validate Token API calls (for single API call to a service configured for Keystone identity service). One call from the '_validate_claims' method and another from the '_expound_claims' method (to fetch the user data).
This results in increased response time of the Service using Keystone as identity service, also increases the load on the Keystone server.

Tags:

Revision history for this message

Joseph Heck (heckj) wrote on 2012-02-23:

Unmesh - could you verify that you're referring to keystone/middleware/auth_token.py please?

tags:	added: legacy
Changed in keystone:
status:	New → Confirmed
importance:	Undecided → Wishlist

Revision history for this message

Dolph Mathews (dolph) wrote on 2012-03-14:

auth_token was rewritten in 33e6c29d and I just audited trunk to verify that this has been fixed.

Changed in keystone:
milestone:	none → essex-rc1
status:	Confirmed → Fix Committed

Thierry Carrez (ttx) on 2012-03-23

Changed in keystone:
status:	Fix Committed → Fix Released

Mark McLoughlin (markmc) on 2012-04-03

Changed in keystone:
assignee:	nobody → Jesse Andrews (anotherjesse)

Thierry Carrez (ttx) on 2012-04-05

Changed in keystone:
milestone:	essex-rc1 → 2012.1

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.