Public bug reported:
The existing Fernet implementation uses a file-backed key repository for
storing Fernet keys. A security optimization that can be made is to put
the keys into a dedicated key manager instead of having the Fernet keys
on disk.
** Affects: keystone
Importance: Wishlist
Status: Triaged
** Tags: fernet jwt
** Tags added: fernet
** Tags added: jwt
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1816054
Title:
RFE: Token Key Store
Status in OpenStack Identity (keystone):
Triaged
Bug description:
The existing Fernet implementation uses a file-backed key repository
for storing Fernet keys. A security optimization that can be made is
to put the keys into a dedicated key manager instead of having the
Fernet keys on disk.
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1816054/+subscriptions
--
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to : [email protected]
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help : https://help.launchpad.net/ListHelp
