EC2 controller should not get credentials other than the ones whose type is "ec2"

Bug #1506473 reported by Tony Wang on 2015-10-15
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)
Medium
Tony Wang

Bug Description

The EC2 extension interacts with credential APIs. New credentials created by EC2 extension are with the "type" property, the value is "ec2", but when the credentials are queried, there is no filter for "type", so all credentials satisfied with other criteria (in this case, "user_id") are returned.

Tony Wang (wwwjfy) on 2015-10-15
Changed in keystone:
assignee: nobody → Tony Wang (muyu)
Changed in keystone:
status: New → In Progress
Steve Martinelli (stevemar) wrote :
Changed in keystone:
importance: Undecided → Medium
Changed in keystone:
milestone: none → mitaka-2

Reviewed: https://review.openstack.org/235214
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=9fc1cc67d993cfa0afc46aaea2802e1c35445f77
Submitter: Jenkins
Branch: master

commit 9fc1cc67d993cfa0afc46aaea2802e1c35445f77
Author: Tony Wang <email address hidden>
Date: Thu Oct 15 17:00:22 2015 +0800

    Add `type' filter for list_credentials_for_user

    When getting, or operating on a credential, EC2 controller needs to
    specify it's a ec2 credential, avoiding conflicts with other type of
    credentials.

    Closes-Bug: #1506473
    Change-Id: Id92fc87bf1be5448aa929224bbce4d3f7f4359b6

Changed in keystone:
status: In Progress → Fix Released

This issue was fixed in the openstack/keystone 9.0.0.0b2 development milestone.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers