OpenStack Identity (keystone)

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1816927
Comment #14

Comment 14 for bug 1816927

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-03-12: Fix merged to keystone (master)

#14

Reviewed: https://review.openstack.org/638397
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=261eeaa19bb4c9e9ea89fac28e473fa44c4a55de
Submitter: Zuul
Branch: master

commit 261eeaa19bb4c9e9ea89fac28e473fa44c4a55de
Author: Pavlo Shchelokovskyy <email address hidden>
Date: Thu Feb 21 13:06:10 2019 +0200

Add hint for order of keys during distribution

    If the new primary key is not the first to be distributed after fernet
    key rotation, there may be a small time window during the key
    distribution when tokens issued by the node where fernet rotation was
    performed can not be validated on the node where keys are being
    distributed to.

Change-Id: I34b5cadd12815ee95c71d8c163504390a9e5e343
Closes-Bug: #1816927