Trove ships with a default admin_token in paste
Bug #1299332 reported by
Jamie Lennox
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack DBaaS (Trove) |
Fix Released
|
Medium
|
Jamie Lennox | ||
Icehouse |
Fix Released
|
Medium
|
Jamie Lennox |
Bug Description
The admin_token is a security override for middleware authentication that allows the user to register against keystone without a username and password.
It will generally not be used in a production system and it will be different (if available) for every deployment so we shouldn't ship a sample one that looks real.
Changed in trove: | |
assignee: | nobody → Jamie Lennox (jamielennox) |
status: | New → In Progress |
Changed in trove: | |
milestone: | none → juno-1 |
importance: | Undecided → Medium |
Changed in trove: | |
status: | Fix Committed → Fix Released |
Changed in trove: | |
milestone: | juno-1 → 2014.2 |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/83270 /git.openstack. org/cgit/ openstack/ trove/commit/ ?id=ae696056fba c7d74a395710934 950e0013cd4d37
Committed: https:/
Submitter: Jenkins
Branch: master
commit ae696056fbac7d7 4a395710934950e 0013cd4d37
Author: Jamie Lennox <email address hidden>
Date: Thu Mar 27 12:08:21 2014 +1000
Don't specify admin_token in paste config
This is not a value that is going to be useful on other systems and
shouldn't be included in the default pipeline.
Closes-Bug: #1299332 fa08a3ddc64493b 481df7397e3
Change-Id: I714539b7536965