Comment 13 for bug 988920
Revision history for this message
| Russell Bryant (russellb) wrote Re: Token authentication for a user in a disabled tenant does not raise Unauthorized error | #13 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
f399f05
demo site
(Get the code!)
Can a keystone dev comment on the potential security impact of this bug? I'm trying to figure out if we need to go back and issue a security advisory for this. Would this token be successfully validated allowing a user to do stuff with the token they shouldn't have received?