Comment 2 for bug 1433311
Revision history for this message
| Lance Bragstad (lbragstad) wrote Re: Fernet tokens current don't support token bind | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
Removing this from the Kilo RC1 milestone for a couple reasons that were discussed in the Keystone meeting [1].
1.) The way bind currently works will cause token bloat. Because the bind can essentially be "anything", we don't necessarily know how to translate it back to it's original value on token validation. This means that bind and it's information must be persisted in the token, which has the potential to make Fernet tokens less usable and exceed the 255 character limit.
2.) It doesn't look like the ability to use bind is exposed through the client.
This will be discussed at the Vancouver summit and revisited in the Liberty release.
[1] http://