[release-announce] keystone 19.0.0 (wallaby)

no-reply at openstack.org no-reply at openstack.org
Wed Apr 14 11:19:51 UTC 2021


We are excited to announce the release of:

keystone 19.0.0: OpenStack Identity

This release is part of the wallaby release series.

The source is available from:

    https://opendev.org/openstack/keystone

Download the package from:

    https://tarballs.openstack.org/keystone/

Please report issues through:

    https://bugs.launchpad.net/keystone/+bugs

For more details, please see below.

19.0.0
^^^^^^

Bug Fixes

* [bug 1885753 (https://bugs.launchpad.net/keystone/+bug/1885753)]
  Keystone's SQL identity backend now retries update user requests to
  safely handle stale data when two clients update a user at the same
  time.

Changes in keystone 18.0.0..19.0.0
----------------------------------

f47e635b8 Retry update_user when sqlalchemy raises StaleDataErrors
9579c809d Add job for keystone functional protection tests
9707673b3 trivial: Update minor wording nit in RBAC persona documentation
a0ae615ab Clarify top-level personas in RBAC documentation
4df1130e1 Clarify ``reader`` role implementation in persona admin guide
256160b84 [goal] Deprecate the JSON formatted policy file
11cfc38df Ignore oslo.db deprecating sqlalchemy-migrate warning
c239cc666 Add openstack-python3-wallaby-jobs-arm64 job
f7df9fba8 Support bytes type in generate_public_ID()
9ef800f0b Imported Translations from Zanata
d6610594d Drop lower-constraints job
6e7369f2e fix E225 missing whitespace around operator
2d7bf10a5 Use app cred user ID in policy enforcement
b83170a38 Generalize release note for bug 1878938
5d2f716e4 Use enforce_new_defaults when setting up keystone protection tests
e98d1ac62 Implement more robust connection handling for asynchronous LDAP calls
5b0c2e010 Imported Translations from Zanata
f5348d3a2 Add vine to lower-constraints
5f546d03a Simplify default config test
5d7c92e20 Add support for functional RBAC tests
c1dcbb05b Delete system role assignments from system_assignment table


Diffstat (except docs and test files)
-------------------------------------

.zuul.yaml                                         |  15 +-
devstack/lib/scope.sh                              |  26 +++
devstack/plugin.sh                                 |   7 +
.../admin/cli-manage-projects-users-and-roles.rst  |   4 +-
keystone/api/users.py                              |  47 +++++-
keystone/assignment/backends/sql.py                |   5 +
keystone/cmd/status.py                             |   3 +
keystone/common/rbac_enforcer/enforcer.py          |   8 +
keystone/conf/__init__.py                          |   7 +
keystone/identity/backends/ldap/common.py          | 106 +++++++-----
keystone/identity/backends/sql.py                  |   8 +
keystone/identity/id_generators/sha256.py          |  10 +-
keystone/locale/en_GB/LC_MESSAGES/keystone.po      |  16 +-
keystone/models/revoke_model.py                    |   2 +-
.../protection/v3/test_application_credential.py   |  66 ++++++++
lower-constraints.txt                              |   7 +-
.../notes/bug-1878938-70ee2af6fdf66004.yaml        |  16 ++
.../notes/bug-1885753-51df25f3ff1d9ae8.yaml        |   6 +
.../notes/bug-1896125-b17a4d12730fe493.yaml        |   7 +
.../notes/bug-1901207-13762f85b8a04481.yaml        |   7 +
.../notes/bug-1901654-69b9f35d11cd0c75.yaml        |  10 ++
...son-formatted-policy-file-95f6307f88358f58.yaml |  20 +++
.../locale/en_GB/LC_MESSAGES/releasenotes.po       | 127 ++++++++++++++-
requirements.txt                                   |   6 +-
36 files changed, 706 insertions(+), 127 deletions(-)


Requirements updates
--------------------

diff --git a/requirements.txt b/requirements.txt
index 33a2c423e..3464fb3fc 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -19 +19 @@ oslo.cache>=1.26.0 # Apache-2.0
-oslo.config>=5.2.0 # Apache-2.0
+oslo.config>=6.8.0 # Apache-2.0
@@ -26 +26 @@ oslo.middleware>=3.31.0 # Apache-2.0
-oslo.policy>=3.0.2 # Apache-2.0
+oslo.policy>=3.6.0 # Apache-2.0
@@ -28 +28 @@ oslo.serialization!=2.19.1,>=2.18.0 # Apache-2.0
-oslo.upgradecheck>=0.1.0 # Apache-2.0
+oslo.upgradecheck>=1.3.0 # Apache-2.0






More information about the Release-announce mailing list