OpenStack Identity (keystone)

  1. Bug #1174499
  2. Comment #50

Comment 50 for bug 1174499

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to horizon (proposed/juno)

Reviewed: https://review.openstack.org/127452
Committed: https://git.openstack.org/cgit/openstack/horizon/commit/?id=3a64723917366eff4d8896b2b2d3d82fa462d25d
Submitter: Jenkins
Branch: proposed/juno

commit 3a64723917366eff4d8896b2b2d3d82fa462d25d
Author: Brant Knudson <email address hidden>
Date: Sun Aug 24 10:04:10 2014 -0500

    Document token hash algorithm option

    With https://review.openstack.org/#/c/116509/ ,
    django-openstack-auth will support a new option for the token hash
    algorithm. This adds the documentation to Horizon's local settings
    example file.

    This is for security hardening. The token hash algorithm defaults
    to MD5, which is considered too weak due to the potential for hash
    collisions. Some security standards require a SHA2 hash algorithm to
    be used.

    DocImpact
    SecurityImpact

    Change-Id: I6774b9b7215d191259586e4721e357487bb777cd
    Closes-Bug: #1174499
    (cherry picked from commit 372d033d89c0f5d305959a6ad5fd3e1159cc91ed)