oslo.cache should offer encryption in a similar manner to keystonemiddleware
Bug #1578466 reported by
Matt Fischer
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Won't Fix
|
Medium
|
Unassigned | ||
oslo.cache |
Confirmed
|
Wishlist
|
Unassigned |
Bug Description
Keystone middleware's caching of tokens offers HMAC validation and encryption of the tokens in the cache. This is important because memcache has literally zero authentication or protection from any user on the system. So this feature should be ported in from keystone middleware into keystone.
Encrypted caching implementation: https:/
Caching configuration via ksm: https:/
tags: | added: security |
tags: | added: caching |
Changed in oslo.cache: | |
status: | New → Confirmed |
importance: | Undecided → Wishlist |
summary: |
- cache should offer encryption in a similar manner to keystonemiddleware - cache does + oslo.cache should offer encryption in a similar manner to + keystonemiddleware cache |
summary: |
oslo.cache should offer encryption in a similar manner to - keystonemiddleware cache + keystonemiddleware |
description: | updated |
To post a comment you must log in.
solid RFE