Provide an option to disable auto-hashing of keystone token

Bug #1473588 reported by Lin Hua Cheng on 2015-07-10
16
This bug affects 3 people
Affects Status Importance Assigned to Milestone
OpenStack Dashboard (Horizon)
Medium
Brad Pokorny
django-openstack-auth
Medium
Lin Hua Cheng

Bug Description

Token hashing is performed to be able to support session with cookie backend. However, the hashed token doesn't always work.

We should provide an option for user to turn off token hashing

Changed in horizon:
assignee: nobody → Lin Hua Cheng (lin-hua-cheng)
milestone: none → liberty-2

Fix proposed to branch: master
Review: https://review.openstack.org/201360

Changed in django-openstack-auth:
assignee: nobody → Lin Hua Cheng (lin-hua-cheng)
status: New → In Progress
David Lyle (david-lyle) on 2015-07-15
Changed in django-openstack-auth:
importance: Undecided → Medium
Changed in horizon:
importance: Undecided → Medium

Reviewed: https://review.openstack.org/201360
Committed: https://git.openstack.org/cgit/openstack/django_openstack_auth/commit/?id=ece924a79d27ede1a8475d7f98e6d66bc3cffd6c
Submitter: Jenkins
Branch: master

commit ece924a79d27ede1a8475d7f98e6d66bc3cffd6c
Author: lin-hua-cheng <email address hidden>
Date: Mon Jul 13 15:51:58 2015 -0700

    Configurable token hashing

    Provide an option for operator to turn off token
    hashing to be performed by horizon.

    In some deployment where PKI token format is used
    for keystone, token hashing causes issue and results
    to 401 error in horizon.

    Change-Id: I187b1486db2e453fd49298e1478e30abe97e54fe
    Closes-Bug: #1473588

Changed in django-openstack-auth:
status: In Progress → Fix Committed
Kevin Fox (kevpn) on 2015-07-24
tags: added: kilo-backport-potential
Changed in horizon:
assignee: Lin Hua Cheng (lin-hua-cheng) → Brad Pokorny (bpokorny)
Changed in horizon:
milestone: liberty-2 → liberty-3

Fix proposed to branch: master
Review: https://review.openstack.org/206765

Changed in horizon:
status: New → In Progress
Changed in horizon:
assignee: Brad Pokorny (bpokorny) → Lin Hua Cheng (lin-hua-cheng)
Changed in horizon:
assignee: Lin Hua Cheng (lin-hua-cheng) → Brad Pokorny (bpokorny)

Reviewed: https://review.openstack.org/206765
Committed: https://git.openstack.org/cgit/openstack/horizon/commit/?id=48e651d05cbe9366884868c5331d49a501945adc
Submitter: Jenkins
Branch: master

commit 48e651d05cbe9366884868c5331d49a501945adc
Author: Brad Pokorny <email address hidden>
Date: Tue Jul 28 16:44:00 2015 -0700

    Configurable token hashing

    Provide info on the option for operators to turn off token
    hashing to be performed by horizon.

    In some deployments where PKI token format is used for keystone,
    token hashing causes 401 errors in horizon.

    Depends-On: I187b1486db2e453fd49298e1478e30abe97e54fe

    Change-Id: I5ebc07850b14b2f2f52fc659831d6cd4aa9f83c3
    Closes-Bug: #1473588

Changed in horizon:
status: In Progress → Fix Committed
Changed in django-openstack-auth:
milestone: none → 1.4.0
status: Fix Committed → Fix Released
Thierry Carrez (ttx) on 2015-09-03
Changed in horizon:
status: Fix Committed → Fix Released
Thierry Carrez (ttx) on 2015-10-15
Changed in horizon:
milestone: liberty-3 → 8.0.0
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers