Change url passed to oauth signature verifier to request url
OAUTH signature verification should happen with the same URL used for signing.
Typically at the user end it should be signed with the request URL and hence it
should be verified with the same.
Currently keystone uses public endpoint URL for signature verification.
Modified the URL passed to oauth signature verification to request URL.
Change-Id: I28059a43cb0088c2952c19f696042ebec54d26c9
Partial-Bug: #1687593
(cherry picked from commit 926685c5a4823d7e3ab3879bae1529052fff7d68)
Reviewed: https:/ /review. openstack. org/483584 /git.openstack. org/cgit/ openstack/ keystone/ commit/ ?id=59e4b4923fb 9d3d9a4cd9a3de4 658abd91125fc0
Committed: https:/
Submitter: Jenkins
Branch: stable/ocata
commit 59e4b4923fb9d3d 9a4cd9a3de4658a bd91125fc0
Author: Hemanth Nakkina <email address hidden>
Date: Tue May 2 16:44:21 2017 +0530
Change url passed to oauth signature verifier to request url
OAUTH signature verification should happen with the same URL used for signing.
Typically at the user end it should be signed with the request URL and hence it
should be verified with the same.
Currently keystone uses public endpoint URL for signature verification.
Modified the URL passed to oauth signature verification to request URL.
Change-Id: I28059a43cb0088 c2952c19f696042 ebec54d26c9 e3ab3879bae1529 052fff7d68)
Partial-Bug: #1687593
(cherry picked from commit 926685c5a4823d7