no user limit of ec2 credentials

Bug #1872732 reported by Maurice Escher
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)
Fix Released
Low
Vishakha Agarwal

Bug Description

Hi,

similar to application credentials, I would like to have the possibility to limit the maximum number of ec2 credentials a user can have to avoid a bloat in the
keystone database or open keystone to a DoS attack.

Thanks,
Maurice

Revision history for this message
Colleen Murphy (krinkle) wrote :

Sounds reasonable. A config option will need to be added here: https://opendev.org/openstack/keystone/src/branch/master/keystone/conf/credential.py

Changed in keystone:
status: New → Triaged
importance: Undecided → Low
Changed in keystone:
assignee: nobody → Vishakha Agarwal (vishakha.agarwal)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.opendev.org/720789

Changed in keystone:
status: Triaged → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystone (master)

Reviewed: https://review.opendev.org/720789
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=a49ee620fabf4ed12d6c1ff562de6912f316ef60
Submitter: Zuul
Branch: master

commit a49ee620fabf4ed12d6c1ff562de6912f316ef60
Author: Vishakha Agarwal <email address hidden>
Date: Fri Apr 17 23:08:40 2020 +0530

    New config option 'user_limit' in credentials

    This patch allows adds new config option 'user_limit'
    to credentials to set maximum number of credentials a
    user is permitted to create.
    Closes-Bug: #1872732

    Change-Id: Ic9dc9a4a9ec1ecbf01842c865e19a7a100e5041d

Changed in keystone:
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.