if " include_service_catalog = False" configure, the token validation can't be redirected to correct keystone server in multi-keystone servers scenario
Bug #1497251 reported by
Chaoyi Huang
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
keystonemiddleware |
Expired
|
Wishlist
|
Unassigned |
Bug Description
In multi-site cloud scenario, a prototype has been done to use Fernet token, and install KeyStone server in each site, all these keystone server share the same DB cluster as the backend, so that they have same data view.
After the patch https:/
But the token validation can not be redirect to the correct local keystone server if " include_
https://<email address hidden>
To post a comment you must log in.
Why not distribute your Fernet keys to each region so that each "site" can validate each other's tokens? That was one of the design goals of Fernet.