Identity v3 PKI token over 8k does not work
Bug #1453591 reported by
Dag Stenstad
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Designate |
Fix Released
|
Low
|
Dag Stenstad | ||
Bug Description
A known problem when using Identity v3 PKI tokens is that the token will grow over 8k in size if you have a lot of entries in your catalog or lots of groups. The default max header length in eventlet.wsgi is 8k, and requests with a header over that size will fail.
I think the default of wsgi.MAX_
In the future, when everyone switches to PKIZ or use ?nocatalog when requesting tokens, this will probably not be an issue. But it is right now.
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to designate (master) | #1 |
| Changed in designate: | |
| assignee: | nobody → Dag Stenstad (dag-stenstad) |
| status: | New → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to designate (master) | #2 |
| Changed in designate: | |
| status: | In Progress → Fix Committed |
| Changed in designate: | |
| milestone: | none → liberty-1 |
| importance: | Undecided → Low |
| Changed in designate: | |
| status: | Fix Committed → Fix Released |
| Changed in designate: | |
| milestone: | liberty-1 → 1.0.0 |
To post a comment you must log in.
Fix proposed to branch: master
Review: https:/