[Openstack] [Barbican] Keystone PKI token too much long

Giuseppe Galeota giuseppegaleota at gmail.com
Wed Jan 22 13:36:20 UTC 2014


Dear all,
I have configured Keystone for Barbican using this
guide<https://github.com/cloudkeep/barbican/wiki/Developer-Guide-for-Keystone>
.

Is there any news or patch about the need to use a shorter token? I would
not use a modified token.

Following you can find an extract of the linked guide:

   - (Optional) Typical keystone setup creates PKI tokens that are long, do
   not fit easily into curl requests without splitting into components. For
   testing purposes suggest updating the keystone database with a shorter
   token-id. (An alternative is to set up keystone to generate uuid tokens.)
   From the above output grad the token expiry value, referred to as "x-y-z"

mysql -u rootuse keystone;update token set id="foo" where expires="x-y-z" ;


Thank you,
Giuseppe
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20140122/e6382a1a/attachment.html>


More information about the Openstack mailing list