Potential user_id collision between Federated IdPs
Bug #1505256 reported by
Adam Young
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Ron De Rose |
Bug Description
User Ids cannot be something specified entirely by the Federation providers. If they are, there are a handful of potential problems:
1. The userId specified will be too big for the column (varchar 64)
2. Two different Identity Providers can provide the same value for user_id
tags: | added: federation |
Changed in keystone: | |
importance: | Undecided → High |
status: | New → Triaged |
Changed in keystone: | |
milestone: | none → mitaka-3 |
Changed in keystone: | |
assignee: | Dolph Mathews (dolph) → Ron De Rose (ronald-de-rose) |
Changed in keystone: | |
importance: | High → Medium |
To post a comment you must log in.
I removed the prescribed solution from the bug description.