Comment 13 for bug 1279750

There's nothing to fix here. max_param_size if for any HTTP parameter, we set this to 64 to prevent a DOS attack.

UserIDs should not be greater than 64, IDs are not usually in the request payload but part of the URL, regardless any userID in keystone is 32 (if stored in SQL) or 64 (if we're shadowing an LDAP user).

Now, Username is set to 255 since these values may come from LDAP and be rather large, thus we set it to 255.

Additionally, we added validation for user create in this patch: https://review.openstack.org/#/c/348531/7 but as you can see from the comments in the schema for "_identity_name" we do not validate that it must be a specific size, since it could come from an LDAP backend, where we don't have any control over the length of the name.

WONTFIX