Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time

2015-11-23 Thread Fox, Kevin M
9:49 PM To: OpenStack Development Mailing List (not for usage questions) Subject: Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time I realize this has been mostly closed up, but just a few additions. On 19 November 2015 at 08:06, Dolph Mathews

Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time

2015-11-21 Thread Jamie Lennox
I realize this has been mostly closed up, but just a few additions. On 19 November 2015 at 08:06, Dolph Mathews wrote: > On Tue, Nov 17, 2015 at 2:56 PM, Lindsay Pallickal > wrote: > >> >> >> On Tue, Nov 17, 2015 at 5:31 AM, Dolph Mathews

Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time

2015-11-18 Thread Dolph Mathews
On Tue, Nov 17, 2015 at 2:56 PM, Lindsay Pallickal wrote: > > > On Tue, Nov 17, 2015 at 5:31 AM, Dolph Mathews > wrote: > >> >> >> On Tuesday, November 17, 2015, Lindsay Pallickal >> wrote: >> >>> >>> It looks like expiration

Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time

2015-11-17 Thread Dolph Mathews
On Tuesday, November 17, 2015, Lindsay Pallickal wrote: > I was having an issue extending the expiration on unscoped and > tenant/project scoped tokens retrieved with an existing token. I now > realize this is a feature, not a bug, but I've got some points to argue > that

Re: [openstack-dev] [keystone] Case for renewability of tokens, increasing expiration time

2015-11-17 Thread Lindsay Pallickal
On Tue, Nov 17, 2015 at 5:31 AM, Dolph Mathews wrote: > > > On Tuesday, November 17, 2015, Lindsay Pallickal > wrote: > >> >> It looks like expiration is done this way to limit the damage from stolen >> tokens, but if a token were stolen, it could