[Openstack-security] [Bug 1305566] Re: the token still can be used if the EC2 credential has been deleted

Morgan Fainberg morgan.fainberg at gmail.com
Wed Mar 2 21:38:49 UTC 2016

Previous message (by thread): [Openstack-security] [Bug 1268751] Re: Potential token revocation abuse via group membership
Next message (by thread): [Openstack-security] [Bug 1552291] Re: User with permissions can not set 'unshared' Murano package to 'shared'
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

** Changed in: keystone
   Importance: Medium => Low

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1305566

Title:
  the token still can be used if the EC2 credential has been deleted

Status in OpenStack Identity (keystone):
  Confirmed

Bug description:
  Currently, the associated tokens are not deleted when deleting ec2
  credential. So, the token got before can still be used.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1305566/+subscriptions

Previous message (by thread): [Openstack-security] [Bug 1268751] Re: Potential token revocation abuse via group membership
Next message (by thread): [Openstack-security] [Bug 1552291] Re: User with permissions can not set 'unshared' Murano package to 'shared'
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Openstack-security mailing list