This appears to have been fixed in upstream Sphinx.
** Changed in: keystone
Status: New => Won't Fix
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1910419
** Changed in: keystone
Status: In Progress => Fix Released
** Changed in: keystone
Importance: Undecided => Low
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
** Changed in: keystone
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1901207
Title:
Application credentials of other
** Changed in: keystone
Status: New => Invalid
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1936425
Title:
Install and configure in keystone: problem when
This is by design. The change user password API does not require a
token, mostly due to a user requiring an administrator to reset their
password if it expires since they cannot authenticate for a token.
If an attacker gets a username and password, having a token required to
change a password
*** This bug is a duplicate of bug 1842749 ***
https://bugs.launchpad.net/bugs/1842749
Since there hasn't been an update to Jeremy's question, we are going to
mark this as a duplicate of bug 1842749 since this appears to be the
same issue.
** This bug has been marked a duplicate of bug
** Also affects: kolla-ansible
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1895723
Title:
Keystone is restarting due
Added oslo.cache, not 100% sure which is affected yet.
** Also affects: oslo.cache
Importance: Undecided
Status: New
** No longer affects: keystone
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity
Added keystonemiddleware
** Also affects: keystonemiddleware
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1883659
OSSA Report: https://review.opendev.org/#/c/698045/
** Changed in: ossa
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
Public bug reported:
When enabling CADF notifications, each event notification contains an
initiator object, this object contains an id, typeuri, project_id, etc.
This notification is useful for auditors to determine who has
authenticated and/or what action a user has performed.
The various
Since this report concerns a possible security risk, an incomplete
security advisory task has been added while the core security reviewers
for the affected project or projects confirm the bug and discuss the
scope of any vulnerability along with potential solutions.
** Also affects: ossa
Fixed here:
https://review.openstack.org/#/c/616286/
** Changed in: keystone
Assignee: (unassigned) => Gage Hugo (gagehugo)
** Changed in: keystone
Status: Confirmed => Fix Committed
** Changed in: keystone
Status: Fix Committed => Fix Released
--
You received
Users have their own self-service API[0] they can call to change their
own password. This is separate from the update_user one, and is
currently not covered by any policy. There are ways to enforce security
regulations (PCI-DSS) on users, which is more defined here[1].
[0]
*** This bug is a duplicate of bug 1790148 ***
https://bugs.launchpad.net/bugs/1790148
** This bug has been marked a duplicate of bug 1790148
Verify operation in keystone (Documentation fault)
--
You received this bug notification because you are a member of Yahoo!
Engineering Team,
Closing out then.
** Changed in: keystone
Status: New => Invalid
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1794112
Title:
Install and configure in
*** This bug is a duplicate of bug 1790148 ***
https://bugs.launchpad.net/bugs/1790148
** This bug has been marked a duplicate of bug 1790148
Verify operation in keystone (Documentation fault)
--
You received this bug notification because you are a member of Yahoo!
Engineering Team,
quot;oslo.message":
"{\"priority\": \"INFO\", \"_unique_id\":
\"e13c4eb09440496cb80b2297a61c12b8\", \"event_type\":
\"identity.authenticate\", \"timestamp\": \"2018-07-06
22:56:45.572963\", \"publish
Seems like ubuntu 16.04 ships with Mitaka, and I think
"credential_setup" was added in Newton so that would explain why the
command is missing.
The docs seem to be correct though in terms of setting up the queens
repo.
** Changed in: keystone
Status: New => Invalid
--
You received this
This likely is more related to RabbitMQ (and as fungi pointed out,
should probably be noted in OSSN) if it has a security impact on
OpenStack as a whole, rather than specifically keystone.
** Also affects: ossn
Importance: Undecided
Status: New
** Changed in: keystone
Status:
This may affect KSC as well, see [0].
[0]
https://review.openstack.org/#/c/553108/3/keystone/resource/backends/sql.py@182
** Also affects: python-keystoneclient
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering
I was able to duplicate this, it seems like there may be an issue with
the heat devstack plugin, when running devstack (stable/ocata) it
originally checks out stable/ocata heat, but once it hits the devstack
plugin it will checkout master heat, and then hit:
2018-02-04 15:56:12.694 | from
** Affects: keystone
Importance: Low
Assignee: Gage Hugo (gagehugo)
Status: In Progress
** Changed in: keystone
Status: New => Triaged
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Ident
With Queens most of the v2 API was removed (minus ec2 related) and port
35357 is a leftover relic from v2 when the admin APIs relied on using
it, vs 5000 for public. With V3 the separation of ports is not
necessary, admin is fine on 5000.
** Changed in: keystone
Status: New => Invalid
--
:32:42
[2] http://eavesdrop.openstack.org/irclogs/%23openstack-keystone
/%23openstack-keystone.2018-02-27.log.html#t2018-02-27T21:24:34
** Affects: keystone
Importance: High
Assignee: Gage Hugo (gagehugo)
Status: In Progress
--
You received this bug notification because you
*** This bug is a duplicate of bug 1716797 ***
https://bugs.launchpad.net/bugs/1716797
Looks like this was reported right after
https://bugs.launchpad.net/keystone/+bug/1716797 was committed.
** This bug has been marked a duplicate of bug 1716797
Verify operation in keystone: step 1 has
This is probably more of an issue with sphinx then, as the current
solution is to block it on upper constraints[0].
[0] https://review.openstack.org/#/c/534779/
** Changed in: keystone
Status: Confirmed => Invalid
--
You received this bug notification because you are a member of Yahoo!
The links aren't useless, but it has come up multiple times where users
are confused what their purpose is for. The best explanation we have
for them is here[0].
[0] https://bugs.launchpad.net/keystone/+bug/1674676/comments/3
** Changed in: keystone
Status: New => Opinion
--
You
Yeah this looks like it's a duplicate of the bug that Craig posted.
** Changed in: keystone
Status: New => Invalid
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
This is a duplicate of https://bugs.launchpad.net/keystone/+bug/1716899
and already has a fix in review.
** Changed in: keystone
Status: New => Invalid
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity
I think the idea for extras was to add custom fields, but not allow the
entire "extras" json blob to be searchable so that resources in keystone
wouldn't become data stores. You can already update these fields by
their attribute name (I know "email" is a popular one for Users), but
searching would
** Also affects: keystonemiddleware
Importance: Undecided
Status: New
** Changed in: keystonemiddleware
Status: New => In Progress
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
Keystone has custom test tools [0] for this (which are named the same
and slightly confusing). The one assertRaisesRegexp test tool was added
[1] as a fix for py26 and is not the same as the function from python 2.
It might be useful to change the name of [0] to avoid any future
confusion, but for
This was fixed and merged, the commit message had "Clouse-Bug:#1668173"
which probably caused the bot to miss it.
** Changed in: keystone
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to
** Also affects: pycadf
Importance: Undecided
Status: New
** Changed in: pycadf
Status: New => In Progress
** Changed in: pycadf
Assignee: (unassigned) => Gage Hugo (gagehugo)
--
You received this bug notification because you are a member of Yahoo!
Engineering Team,
bpg-dev (Ubuntu/Debian) along with other package
managers to the list of dependencies to install before using pip:
http://docs.openstack.org/developer/keystone/devref/development.environment.html
#installing-dependencies
** Affects: keystone
Importance: Undecided
Assignee: Gage Hugo (gagehugo)
blueprint and come on to IRC Freenode
#openstack-nova channel to discuss how to implement this functionality.
Going to abandon the change for now.
** Changed in: nova
Status: In Progress => Invalid
** Changed in: nova
Assignee: Gage Hugo (gh159m) => (unassigned)
--
You received th
37 matches
Mail list logo