[openstack-dev] [nova][security] Enable user password complexity verification

郑振宇 zheng.zhenyu at outlook.com
Thu Jun 4 05:08:22 UTC 2015

Hi All,
I have reported bugs in launchpad about those bugs:
Please have a look if you are interested.
I also agree that Keystone should at least provide the option of basic password checks, and if the users are not satisfied with the provided solution, then they can choose more advanced products.


> Date: Wed, 3 Jun 2015 21:02:19 +0800
> From: anlin.kong at gmail.com
> To: openstack-dev at lists.openstack.org
> Subject: Re: [openstack-dev] [nova][security] Enable user password	complexity verification
> On Wed, Jun 3, 2015 at 7:49 PM, David Stanek <dstanek at dstanek.com> wrote:
> >
> > On Wed, Jun 3, 2015 at 6:04 AM liusheng <liusheng1175 at 126.com> wrote:
> >>
> >> Thanks for this topic, also, I think it is similar situation when talking
> >> about keystone users, not only the instances's password.
> >>
> >
> > In the past we've talked about having more advanced password management
> > features in Keystone (complexity checks, rotation, etc). The end result is
> > that we are not adding them because we would like to get away from managing
> > users in Keystone that way. Instead we are pushing for users to integrate
> > Keystone with more fully featured identity products.
> >
> Hi, David,
> Thanks for the info you provided. Would you please give me some
> links(emails or etherpad) about the discussion before?
> IMHO, as an identity management project, with user-faced APIs, Keytone
> should provide such security feature options to users, to make it
> self-contained, we could not always rely on other compoment or
> product(Horizon, 3rd party component, etc.) to do something really
> import for Keystoen itself.
> -- 
> Regards!
> -----------------------------------
> Lingxian Kong
> __________________________________________________________________________
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20150604/ec2e16c6/attachment.html>

More information about the OpenStack-dev mailing list