Comment 5 for bug 1434034
Revision history for this message
| Yukihiro KAWADA (warp-kawada) wrote Re: Even if the user is disabled, can use the last token is validated | #5 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
I'm using juno, uuid, sql, v2 and v3.
But these things would not matter.
Please try like this.
1. get foo's token (a) using keystone api.
2. user foo is disabled. (direct operation to mysql : keystone.
3. get new token using keystone api. then can't get new token. this is ok.
4. but foo CAN nova list api by token(a)
This issue is because token/provider.py does not check the status of the user or tenant.