[Openstack-security] [Bug 1442343] Re: Mapping openstack_project attribute in k2k assertions with different domains

Alan Pevec 1442343 at bugs.launchpad.net
Thu Jul 23 21:56:36 UTC 2015


** Changed in: keystone/kilo
       Status: New => Fix Committed

** Changed in: keystone/kilo
    Milestone: None => 2015.1.1

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1442343

Title:
  Mapping openstack_project attribute in k2k assertions with different
  domains

Status in Keystone:
  Fix Released
Status in Keystone kilo series:
  Fix Committed

Bug description:
  We can have two projects with the same name in different domains. So
  if we have a "Project A" in "Domain X" and a "Project A" in "Domain
  Y", there is no way to differ what "Project A" is being used in a SAML
  assertion generated by this IdP (we have only the openstack_project
  attribute in the SAML assertion).

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1442343/+subscriptions




More information about the Openstack-security mailing list