On Fri, Jun 28, 2013 at 10:12 AM, Steven Hardy sha...@redhat.com wrote:
Obviously long-term a keystone native way to sign requests would be great,
and could be used by Heat, and e.g Swift which has it's own method for
generating pre-signed URLs.
fyi: only when you are using the temporary url
On 06/27/2013 10:45 PM, Simo Sorce wrote:
On Thu, 2013-06-27 at 17:49 -0700, Clint Byrum wrote:
On 2013-06-27 16:28, Jamie Lennox wrote:
On Fri, 2013-06-28 at 07:01 +1200, Robert Collins wrote:
On 27 June 2013 04:55, Adam Young ayo...@redhat.com wrote:
Right now Keystone provides so called
On 06/27/2013 10:35 AM, Thierry Carrez wrote:
Adam Young wrote:
Right now Keystone provides so called bearer tokens: This means that whoever
has a token can do whatever the token entitles him to do. If I
manage to get somebody's token I can do whatever this person is able to do.
Right. Tokens
On 26/06/13 12:55 -0400, Adam Young wrote:
Glance:
- Uses httplib for communication
- Uses keystoneclient within cli
- Checks that socket is patched before importing eventlet for httplib.
FWIW, we're working on the migration to requests.
Cheers,
FF
--
@flaper87
Flavio Percoco
On Thu, 2013-06-27 at 16:35 +0200, Thierry Carrez wrote:
Adam Young wrote:
Right now Keystone provides so called bearer tokens: This means that
whoever has a token can do whatever the token entitles him to do. If I
manage to get somebody's token I can do whatever this person is able to do.
On 2013-06-27 16:28, Jamie Lennox wrote:
On Fri, 2013-06-28 at 07:01 +1200, Robert Collins wrote:
On 27 June 2013 04:55, Adam Young ayo...@redhat.com wrote:
Right now Keystone provides so called bearer tokens: This means that
whoever
has a token can do whatever the token entitles him to do.
On Thu, 2013-06-27 at 17:49 -0700, Clint Byrum wrote:
On 2013-06-27 16:28, Jamie Lennox wrote:
On Fri, 2013-06-28 at 07:01 +1200, Robert Collins wrote:
On 27 June 2013 04:55, Adam Young ayo...@redhat.com wrote:
Right now Keystone provides so called bearer tokens: This means that
whoever
Right now Keystone provides so called bearer tokens: This means that whoever
has a token can do whatever the token entitles him to do. If I
manage to get somebody's token I can do whatever this person is able to do. To
fix it, the other services that use tokens to:
1. Authenticate the identity