[Openstack-security] [Bug 1442787] Re: Mapping openstack_user attribute in k2k assertions with different domains
Rodrigo Duarte
rodrigodsousa at gmail.com
Wed Apr 15 14:11:02 UTC 2015
Ok, thanks for clarifying the difference! Will add the security tag.
** Information type changed from Public Security to Public
** Tags added: security
--
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1442787
Title:
Mapping openstack_user attribute in k2k assertions with different
domains
Status in OpenStack Identity (Keystone):
In Progress
Bug description:
We can have two users with the same username in different domains. So
if we have a "User A" in "Domain X" and a "User A" in "Domain Y",
there is no way to differ what "User A" is being used in a SAML
assertion generated by this IdP (we have only the openstack_user
attribute in the SAML assertion).
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1442787/+subscriptions
More information about the Openstack-security
mailing list