Comment 33 for bug 1242992

This is still a bug... python keystoneclient does not explicitly depend on python keyring. So when you pip install python-keystoneclient it will not pull in the version of keyring that it needs. However if you have keyring installed (say because your distro gives it to you), python-keystoneclient will use that version without checking if it is the correct version.

If python-keystone client is going to depend on python keyring it should list that package as a dependency. If it is going to optionally use keyring it should double check the version of keyring that is available.

Also, maybe python-keystoneclient should just cache tokens in memory and avoid this keyring business completely.