OpenStack Identity (keystone)

  1. Series mitaka
  2. Bug #1577558
  3. Comment #19

Comment 19 for bug 1577558

Revision history for this message
Lance Bragstad (lbragstad) wrote : Re: v2.0 fernet tokens audit ids are inconsistent

This doesn't seem to be an issue with liberty. I pulled the latest liberty as of today:

commit 26240963712541d215d414fa71596cccc60dd7ce

I was able to get a token with an audit_id = "8HAaHKMnSxe-wrTTv2RgxA". I rescoped that token and the audit_ids returned in the response contained the original audit_id from the first token:

"audit_ids": [
                "i8OpkdQHSJOgMQVIJgkG9w",
                "8HAaHKMnSxe-wrTTv2RgxA"
            ],

This doesn't seem to apply to liberty (probably because of the reasoning listed in comment #18). The following pastes are the authentication responses from my manual test.

original token: http://paste.openstack.org/show/497523/
rescoped token: http://paste.openstack.org/show/497524/