keystonemiddleware

Incorrect deprecation warning for revocations

Bug #1657014 reported by Divya K Konoor
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
keystonemiddleware
Expired
Undecided
Unassigned

Bug Description

As part of changes in https://review.openstack.org/#/c/391405/, there were few attributes as listed below that were deprecated with the reasoning that they apply only to PKI token format and not others. When I check the code, I don't think the attributes below are specific to PKI and work well with other token formats like Fernet. I believe these attributes have been incorrectly deprecated and continue to be supported

2017-01-02 05:04:31.828 11242 WARNING oslo_config.cfg [req-0dfeb195-9f0e-4ba5-9248-e98c3b12dcfb - - - - -] Option "check_revocations_for_cached" from group "key stone_authtoken" is deprecated for removal. Its value may be silently ignored in the future.

2017-01-02 05:04:31.857 11242 WARNING oslo_config.cfg [req-0dfeb195-9f0e-4ba5-9248-e98c3b12dcfb - - - - -] Option "revocation_cache_time" from group "keystone_a uthtoken" is deprecated for removal. Its value may be silently ignored in the future.

Revision history for this message
Morgan Fainberg (mdrnstm) wrote :

This should only apply to PKI and (legacy) setups of UUID. This should be controlled by the option https://github.com/openstack/keystonemiddleware/blob/c241aec527f69dc079931b605099dbdf807071d4/keystonemiddleware/auth_token/_opts.py#L164 and we should never make the request for the rev list if that is disabled (set to false).

Can you check to see what your value is in your environment?

Changed in keystonemiddleware:
status: New → Incomplete
Revision history for this message
Launchpad Janitor (janitor) wrote :

[Expired for keystonemiddleware because there has been no activity for 60 days.]

Changed in keystonemiddleware:
status: Incomplete → Expired
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.