Comment 3 for bug 1872737
Revision history for this message
| kay (kay-diam) wrote Re: Keystone doesn't check signature TTL of the EC2 credential auth method | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
demo site
(Get the code!)
Hi Colleen. Thanks for looking into this issue. The link you provided is correct. The "requests are valid within 15 minutes of the timestamp in the request" statement is also correct for Amazon API. The purpose of this bugreport is to introduce a configuration option in keystone with a default value, e.g. 15 minutes. Keystone should use this configuration option to validate EC2 signature TTL.