OpenStack Identity (keystone)

  1. Bug #1343932
  2. Activity log

Activity log for bug #1343932

Date Who What changed Old value New value Message
2014-07-18 09:52:32 Marcos Lobo bug added bug
2014-07-18 11:23:13 OpenStack Infra keystone: status New In Progress
2014-07-18 11:23:13 OpenStack Infra keystone: assignee Marcos Lobo (marcos-fermin-lobo)
2014-07-18 15:10:33 Lance Bragstad keystone: importance Undecided Low
2014-07-18 20:18:56 Dolph Mathews tags icehouse-backport-potential
2014-09-04 19:32:13 Lance Bragstad description In Icehouse release, CRUD grant functions[1] don't check if user_id and group_id exists. role_id, domain_id and project_id are checked and I don't see any reason why don't check user_id and group_id as well. I think we should change these functions to check if user_id and group_id exists. [1] https://github.com/openstack/keystone/blob/stable/icehouse/keystone/assignment/backends/ldap.py#L347 In Icehouse release, CRUD grant functions[1] don't check if user_id and group_id exists. role_id, domain_id and project_id are checked and I don't see any reason to not check if the user_id and group_ids are valid. I think we should change these functions to check if the user and/or group exists before creating/updating the grant. [1] https://github.com/openstack/keystone/blob/stable/icehouse/keystone/assignment/backends/ldap.py#L347
2014-09-04 19:33:53 Lance Bragstad keystone: status In Progress Incomplete
2014-09-23 23:51:12 Morgan Fainberg keystone: assignee Marcos Lobo (marcos-fermin-lobo)
2014-11-23 04:18:19 Launchpad Janitor keystone: status Incomplete Expired