[Openstack-security] [Bug 1305566] Re: the token still can be used if the EC2 credential has been deleted

wanghong w.wanghong at huawei.com
Fri Apr 11 04:07:57 UTC 2014

Previous message (by thread): [Openstack-security] [Bug 1300274] Re: [0SSA 2014-013] V3 Authentication Chaining - uniqueness of auth method names (CVE-2014-2828)
Next message (by thread): [Openstack-security] [Bug 1305566] Re: the token still can be used if the EC2 credential has been deleted
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

** Changed in: keystone
     Assignee: (unassigned) => wanghong (w-wanghong)

-- 
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1305566

Title:
  the token still can be used if the EC2 credential has been deleted

Status in OpenStack Identity (Keystone):
  Triaged

Bug description:
  Currently, the associated tokens are not deleted when deleting ec2
  credential. So, the token got before can still be used.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1305566/+subscriptions

Previous message (by thread): [Openstack-security] [Bug 1300274] Re: [0SSA 2014-013] V3 Authentication Chaining - uniqueness of auth method names (CVE-2014-2828)
Next message (by thread): [Openstack-security] [Bug 1305566] Re: the token still can be used if the EC2 credential has been deleted
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Openstack-security mailing list