python-keystoneclient 0.2.4 is primarily a security & bug fix release [1] and is now available on pypi [2]. A few highlights concerning the auth_token middleware: - Expired PKI tokens are now rejected [3] - PKI token revocations lists are now cached using a configurable expiration (revocation_cache_time) [4] - The signing_dir configuration option now defaults to a secure, temporary directory rather than the user's home directory [5] Additionally, updating a user's password on the CLI can now be done securely [6]. [1]: https://launchpad.net/python-keystoneclient/+milestone/0.2.4 [2]: https://pypi.python.org/pypi/python-keystoneclient [3]: https://bugs.launchpad.net/python-keystoneclient/+bug/1179615 [4]: https://bugs.launchpad.net/python-keystoneclient/+bug/1076083 [5]: https://bugs.launchpad.net/python-keystoneclient/+bug/1181157 [6]: https://bugs.launchpad.net/python-keystoneclient/+bug/938315 -Dolph -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack/attachments/20130529/a047de2c/attachment.html>