Token invalidation on project delete doesn't take into inheritance into account
Bug #1513893 reported by
Henry Nash
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Henry Nash |
Bug Description
When we delete a project, we invalidate all the project tokens for any user who has a role on that project. The underlying assignment manager method used for this is list_user_
Changed in keystone: | |
assignee: | nobody → Henry Nash (henry-nash) |
tags: | added: hierarchical-multitenancy |
Changed in keystone: | |
importance: | Undecided → Medium |
Changed in keystone: | |
milestone: | none → mitaka-2 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/242564
Review: https:/