Skip to end of metadata
Go to start of metadata

OpenStack Identity (Keystone)

Keystone is a cloud identity service written in Python.

Project Description

CODE Repository - https://github.com/openstack/keystone Releases - https://github.com/openstack/keystone/tags DOCUMENTATION For Users - http://docs.openstack.org/ For Contributors - http://keystone.openstack.org/ COMMUNITY Wiki - http://wiki.openstack.org/keystone Meetings - http://wiki.openstack.org/Meetings/KeystoneMeeting Mailing Lists - http://wiki.openstack.org/MailingLists IRC - #openstack on http://freenode.net/

 

Active Project Series

Series

Summary

Status

Active Milestone(s)

Keystone future series

The future series tracks work that is necessary but will not land (or be completed) in the current development cycle.

Future

Keystone grizzly series

This is the "grizzly" series.

Current Stable Release

 

Keystone havana series

This is the "havana" series.

Active Development

Keystone icehouse series

This is the "icehouse" series.

Future

Project Code:

openstack/keystone

Repository URL:

https://github.com/openstack/keystone

Launchpad Project:

OpenStack Identity (Keystone)

Project Activity Dashboard:

Project Activity

Project Contributors Activity:

Project Contributors Activity

Repository

Active Bugs in the past 7 days

Bug Importance Reporter Assigned Date Assigned Assignee Status
Token issued_at time changes on /v3/auth/token GET requests Medium Lance Bragstad (info) Jul 25, 2014 Lance Bragstad In Progress
Missing headers in cURL examples in federation docs. Undecided Marek Denis (info) Jul 25, 2014 Marek Denis Fix Committed
PKI and PKIZ tokens contain unnecessary whitespace Wishlist Dolph Mathews (info) Jul 24, 2014 Dolph Mathews In Progress
Testing of results of entity lists does not check that the command part of the url is in the 'self' link Wishlist Alexey Miroshkin (info) Jul 24, 2014 Alexey Miroshkin In Progress
sqlite files should be excluded from the scope of the repo Undecided Victor Morales (info) Jul 24, 2014 Victor Morales In Progress
Trust unit tests should target additional threat scenarios Undecided Nathan Kinder (info) Jul 23, 2014 Nathan Kinder In Progress
mis-use of XML canonicalization in keystone tests Undecided Mike Bayer (info) Jul 23, 2014 David Stanek In Progress
tempest.api.identity.admin.v3.test_tokens.TokensV3TestJSON.test_rescope_token race fails with DB2 Undecided Matt Riedemann (info) Jul 23, 2014 Brant Knudson In Progress
Invalid links section for get access token Medium Steve Martinelli (info) Jul 23, 2014 Sergey Nuzhdin In Progress
Not all db.sqal.session methods are wrapped by wrap_db_error Undecided Boris Pavlovic (info) Jul 23, 2014 Ilya Pekelny In Progress
v2.0/tenants/tenantId reports 404 Undecided Kanagaraj Manickam (info) Jul 23, 2014 Kanagaraj Manickam Incomplete
Ldap Live test failures Undecided Arun Kant (info) Jul 22, 2014 Arun Kant New
keystone v2.0 API docs reported with invalid information Undecided Kanagaraj Manickam (info) Jul 22, 2014 Kamlesh Kapoor New
CRUD grant don't check user_id and group_id Low Marcos Lobo (info) Jul 18, 2014 Marcos Lobo In Progress
Cannot Use existing auth plugins with new methods Wishlist Adam Young (info) Jul 18, 2014 Adam Young In Progress
Versionless GET on keystone gives different answer with port 5000 and 35357 High David Kranz (info) Jul 17, 2014 Adam Young Triaged
"Self" link in v3 collections omits any url filters Low Henry Nash (info) Jul 16, 2014 Alexey Miroshkin In Progress
add internal notification for endpoint Wishlist wanghong (info) Jul 4, 2014 wanghong Fix Committed
oauth1 response content type is incorrect Undecided Steve Martinelli (info) Jul 2, 2014 Brant Knudson Fix Committed
Disable domain doesn't remove domain scoped tokens Medium Haneef Ali (info) Jul 1, 2014 Sam Leong In Progress
LDAP attributes mapped to None can cause 500 errors Low Nathan Kinder (info) Jun 28, 2014 Nathan Kinder Fix Committed
run_tests should strictly be a wrapper for tox Wishlist Morgan Fainberg (info) Jun 28, 2014 Adam Young In Progress
HEAD and GET inconsistencies in Keystone Medium Morgan Fainberg (info) Jun 25, 2014 Morgan Fainberg Fix Committed
Keystone token poor performance. Need index on user_id Medium Haneef Ali (info) Jun 23, 2014 Justin Shepherd In Progress
auth tests should not require admin token Low Guang Yee (info) Jun 23, 2014 wanghong Fix Committed
Eliminate use of with_lockmode('update') Medium Morgan Fainberg (info) May 31, 2014 Morgan Fainberg In Progress
Common Ldap handler connection pooling Medium Arun Kant (info) May 20, 2014 Arun Kant Fix Committed
jsonutils should use simplejson on python 2.6 if available Low Ihar Hrachyshka (info) Apr 29, 2014 Ihar Hrachyshka Fix Committed
get endpoints associated with a project will return 404 error if endpoint isnot exist Medium wanghong (info) Apr 11, 2014 wanghong Fix Committed
get_group_project_roles() asks same ldap query for all groups associated with user Medium alexius ludeman (info) Apr 4, 2014 Morgan Fainberg Fix Committed
Reconnect on failure for multiple servers always connects to first server Low Maru Newby (info) Apr 1, 2014 wanghong Triaged
Enforce alphabetical ordering in requirements file Wishlist Eric Guo (info) Feb 27, 2014 ChenZheng In Progress
wrong order of assertEquals args Wishlist Ilya Tyaptin (info) Feb 19, 2014 David Stanek In Progress
When using per-domain-identity backend, user_ids could collide Wishlist Morgan Fainberg (info) Feb 11, 2014 Henry Nash Fix Committed
extraneous vim editor configuration comments Wishlist Terri Yu (info) Feb 8, 2014 Eric Guo Fix Committed
Some Python requirements are not hosted on PyPI High Jeremy Stanley (info) Jan 16, 2014 Brant Knudson Fix Committed
Password logging High Gabriel Hurley (info) Jul 17, 2012 Dolph Mathews Fix Released
Creation of Member role is no longer required Undecided Stephen Gordon (info) New
DB2 deadlock error not detected Undecided Bryan Jones (info) New
Fix python26 compatibility for RFCSysLogHandler Low Bogdan Dobrelya (info) Confirmed
Keystone logs auth tokens in URLs at log level info Low Joel Friedly (info) Triaged
Middeware auth_token fails with scoped federated saml token Undecided Mahesh Sawaiker (info) New
Openstack services should support SIGHUP signal Low Bogdan Dobrelya (info) Confirmed
Revocation events are broken with mysql High Brant Knudson (info) Triaged
Unittests do not succeed with random PYTHONHASHSEED value Undecided Clark Boylan (info) New
dependency injection fails to init domain-specific identity drivers Medium Mark Miller (info) Incomplete
endpoint list should support filtering by region v3 Undecided Takahiro Shida (info) New
error when create a new user with its role is member Undecided guomin.lizte (info) New
keystone under apache can't handle request chunking Low David Patterson (info) Triaged
keystone uses incorrect OS_AUTH_URL Undecided Ted Elwartowski (info) Incomplete
keystone will not auth users if there is a bad endpoint Undecided Matt Fischer (info) New

 

Active Reviews in the past 7 days

Review

Owner

Status

Created

Updated

Updated from global requirements

MERGED

Jul 10, 2014

Jul 22, 2014

Imported Translations from Transifex

NEW

Jul 15, 2014

Jul 27, 2014

Updated from global requirements

NEW

Jul 22, 2014

Jul 24, 2014

Updated from global requirements

NEW

Jul 23, 2014

Jul 24, 2014

Updated from global requirements

MERGED

Jul 23, 2014

Jul 24, 2014

Keystone service throws error on SIGHUP signal

Abhishek Kekane

NEW

Jul 16, 2014

Jul 24, 2014

Basic-Auth middleware

Adam Young

NEW

May 5, 2014

Jul 25, 2014

Ability to turn off ldap referral chasing

Adam Young

NEW

May 9, 2014

Jul 24, 2014

Do not require method attribute on plugins

Adam Young

NEW

Jul 18, 2014

Jul 21, 2014

Remote Debugging for HTTPD

Adam Young

NEW

Jul 23, 2014

Jul 24, 2014

Expand the caching layer in keystone

Ajaya Agrawal

ABANDONED

Jul 9, 2014

Jul 25, 2014

cache the catalog

Ajaya Agrawal

MERGED

Jul 23, 2014

Jul 24, 2014

Check url is in the 'self' link in list responses

Alexey Miroshkin

NEW

Jul 24, 2014

Jul 25, 2014

Add information regarding HTTPS for SSL enabled endpoints

Andre Naehring

NEW

May 26, 2014

Jul 21, 2014

Adding support for ldap connection pooling.

Arun Kant

MERGED

May 23, 2014

Jul 24, 2014

Add sample of rally plugin

Boris Pavlovic

NEW

Jun 9, 2014

Jul 21, 2014

Configurable client repo

Brant Knudson

NEW

Jun 28, 2014

Jul 24, 2014

JSON-Home for V3

Brant Knudson

NEW

Jul 1, 2014

Jul 23, 2014

Add a test for revoking a scoped token from an unscoped

Brant Knudson

NEW

Jul 23, 2014

Jul 26, 2014

Fix revoking a scoped token from an unscoped token

Brant Knudson

NEW

Jul 24, 2014

Jul 26, 2014

Add tests related to V2 token issued_at time changing

Brant Knudson

NEW

Jul 25, 2014

Jul 26, 2014

Fix for V2 token issued_at time changing

Brant Knudson

NEW

Jul 25, 2014

Jul 26, 2014

Correct revocation event test for domain_id

Brant Knudson

NEW

Jul 26, 2014

Jul 26, 2014

Fix revoking domain-scoped tokens

Brant Knudson

NEW

Jul 26, 2014

Jul 26, 2014

Add pluggable range functions for token flush

Clayton O'Neill

NEW

Jun 22, 2014

Jul 21, 2014

Adds a fork of python-ldap for Py3 testing

David Stanek

NEW

May 27, 2014

Jul 24, 2014

Fixes test_exceptions.py for Python3

David Stanek

MERGED

Jun 26, 2014

Jul 22, 2014

Fixes a Python3 syntax error

David Stanek

MERGED

Jun 26, 2014

Jul 21, 2014

Adds several more test modules that pass on Py3

David Stanek

MERGED

Jun 26, 2014

Jul 22, 2014

Fixes test_wsgi for Python3

David Stanek

MERGED

Jun 26, 2014

Jul 24, 2014

Details the proper way to call a callable

David Stanek

NEW

Jul 3, 2014

Jul 24, 2014

Regenerate sample config file

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Fixed tox cover environment to share venv

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Adds coverage report to py33 test runs

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Fixes a capitalization issue

David Stanek

NEW

Jul 22, 2014

Jul 24, 2014

Reduces the amount of mocked imports for Python 3

David Stanek

MERGED

Jul 22, 2014

Jul 22, 2014

Disables LDAP unit tests

David Stanek

MERGED

Jul 22, 2014

Jul 22, 2014

Add the new oslo.i18n as a dependency for Python 3

David Stanek

MERGED

Jul 22, 2014

Jul 24, 2014

Fixes an issue with the XMLEquals matcher

David Stanek

NEW

Jul 24, 2014

Jul 24, 2014

Adding more descriptive error message

Dolph Mathews

ABANDONED

Apr 14, 2014

Jul 25, 2014

project disabled/deleted notification recommendations

Dolph Mathews

MERGED

Jul 14, 2014

Jul 21, 2014

implement GET /v3/catalog

Dolph Mathews

MERGED

Jul 14, 2014

Jul 21, 2014

move GET /v3/catalog to GET /v3/auth/catalog

Dolph Mathews

NEW

Jul 18, 2014

Jul 21, 2014

Remove unnecessary whitespace from PKI & PKIZ tokens

Dolph Mathews

NEW

Jul 24, 2014

Jul 25, 2014

Add documentation on LDAP 'user_id_attribute'

Eric N. Vander Weele

NEW

May 13, 2014

Jul 25, 2014

X.509 SSL certificate authentication plugin

Guang Yee

ABANDONED

Jul 1, 2014

Jul 23, 2014

Example JSON files should be human-readable

Harry Rybacki

MERGED

Jul 19, 2014

Jul 21, 2014

Comparision of database models and migrations.

Ilya Pekelny

NEW

Mar 14, 2014

Jul 22, 2014

Use metadata.create_all() to fill a test database

Ilya Pekelny

NEW

May 14, 2014

Jul 21, 2014

Catch correct oslo.db exception

Ilya Pekelny

NEW

Jul 23, 2014

Jul 25, 2014

Add restricted catalog to unscoped token

Jamie Lennox

NEW

Jul 22, 2014

Jul 22, 2014

Redirect stdout and stderr when using subprocess

Jeffrey Zhang

NEW

Oct 14, 2013

Jul 24, 2014

Initial kerberos plugin implementation.

Jose Castro Leon

NEW

Feb 18, 2014

Jul 25, 2014

Refactor set domain-id and mapping code

Juan Antonio Osorio Robles

NEW

Jul 17, 2014

Jul 24, 2014

Adding Role for an unexisting user should fail

Juan Manuel Ollé

NEW

May 16, 2014

Jul 26, 2014

Adding an index on token.user_id

Justin Shepherd

NEW

Jun 23, 2014

Jul 22, 2014

Check that region ID is not an empty string

Kévin Bernard-Allies

NEW

May 23, 2014

Jul 22, 2014

Initial implementation of validator

Lance Bragstad

MERGED

Apr 10, 2014

Jul 22, 2014

Implement validation on Assignment V3 resources

Lance Bragstad

NEW

Apr 10, 2014

Jul 23, 2014

Implement validation on the Catalog V3 resources

Lance Bragstad

NEW

May 28, 2014

Jul 25, 2014

Implement validation on Credential V3

Lance Bragstad

NEW

Jun 6, 2014

Jul 24, 2014

Implement validation on Policy V3 API

Lance Bragstad

NEW

Jul 2, 2014

Jul 24, 2014

Implement validation on Trust V3 API

Lance Bragstad

NEW

Jul 2, 2014

Jul 24, 2014

Add string id type validation

Lance Bragstad

NEW

Jul 22, 2014

Jul 23, 2014

Make BaseValidationTestCase

Lance Bragstad

NEW

Jul 23, 2014

Jul 24, 2014

Add test for checking token issued_at time

Lance Bragstad

NEW

Jul 25, 2014

Jul 25, 2014

Check the url format when create endpoint

Marcos Lobo

NEW

May 13, 2014

Jul 25, 2014

Group related methods for LDAP backend

Marcos Lobo

NEW

Jun 24, 2014

Jul 25, 2014

CRUD grant functions don't check user_id and group_id

Marcos Lobo

NEW

Jul 18, 2014

Jul 26, 2014

Implement Service Providers API for OS-FEDERATION

Marek Denis

NEW

Jul 3, 2014

Jul 27, 2014

Make OS-FEDERATION core.Driver methods abstract

Marek Denis

MERGED

Jul 4, 2014

Jul 25, 2014

Keystone part of a PoC for Horizon/Keystone WebSSO

Marek Denis

NEW

Jul 10, 2014

Jul 24, 2014

Add X-Auth-Token header in federation examples

Marek Denis

MERGED

Jul 25, 2014

Jul 25, 2014

Use CMS to decode PKI tokens

Morgan Fainberg

ABANDONED

Feb 14, 2014

Jul 22, 2014

Remove `with_lockmode` use from Trust SQL backend.

Morgan Fainberg

NEW

May 31, 2014

Jul 22, 2014

Do not log 14+ INFO lines on a broken pipe error (eventlet)

Morgan Fainberg

NEW

Jun 26, 2014

Jul 24, 2014

Make run_tests.sh a wrapper for tox

Morgan Fainberg

ABANDONED

Jun 28, 2014

Jul 22, 2014

DO NOT MERGE: Performance profiling

Morgan Fainberg

ABANDONED

Jun 28, 2014

Jul 22, 2014

Update middleware that was moved to keystonemiddleware

Morgan Fainberg

NEW

Jul 11, 2014

Jul 24, 2014

Correct the region table to be InnoDB and UTF8

Morgan Fainberg

NEW

Jul 11, 2014

Jul 24, 2014

Add the new Keystone TokenModel

Morgan Fainberg

MERGED

Jul 15, 2014

Jul 25, 2014

Consolidate `assert_XXX_enabled` type calls to managers

Morgan Fainberg

MERGED

Jul 16, 2014

Jul 21, 2014

Move token persistence classes to token.persistence module

Morgan Fainberg

MERGED

Jul 17, 2014

Jul 25, 2014

Mark the 'check_vX_token' methods deprecated

Morgan Fainberg

MERGED

Jul 17, 2014

Jul 22, 2014

Make token_provider_api contain token persistence

Morgan Fainberg

NEW

Jul 23, 2014

Jul 25, 2014

Remove assignment controller dependency on token_api

Morgan Fainberg

NEW

Jul 24, 2014

Jul 25, 2014

Expose token revocation list via token_provider_api

Morgan Fainberg

NEW

Jul 24, 2014

Jul 25, 2014

Remove ec2 contrib dependency on token_api

Morgan Fainberg

NEW

Jul 24, 2014

Jul 25, 2014

Remove trust dependency on token_api

Morgan Fainberg

NEW

Jul 25, 2014

Jul 25, 2014

Sample config update

Morgan Fainberg

NEW

Jul 25, 2014

Jul 25, 2014

Remove duplicated asserts

Morgan Fainberg

NEW

Jul 25, 2014

Jul 25, 2014

Adds log message upon token granting

Nathan Kinder

NEW

May 21, 2014

Jul 26, 2014

Implicitly ignore attributes that are mapped to None in LDAP

Nathan Kinder

MERGED

Jun 28, 2014

Jul 22, 2014

Allow LDAP lock attributes to be used as enable attributes

Nathan Kinder

NEW

Jul 3, 2014

Jul 22, 2014

Trust unit tests should target additional threat scenarios

Nathan Kinder

NEW

Jul 23, 2014

Jul 27, 2014

Extracting get group roles for project logic to drivers.

Pablo Fernando Cargnelutti

MERGED

Apr 8, 2014

Jul 21, 2014

better handling for empty/None ldap values

Richard Megginson

NEW

Feb 24, 2014

Jul 24, 2014

test_user_mixed_case_attribute fails - mail, not email

Richard Megginson

NEW

May 21, 2014

Jul 24, 2014

Hierarchical Projects

Rodrigo Duarte

NEW

Jul 22, 2014

Jul 24, 2014

Disable a domain will revoke tokens under the same domain

Sam Leong

MERGED

Jul 15, 2014

Jul 24, 2014

Fix invalid self link in get access token

Sergey Nuzhdin

NEW

Jul 25, 2014

Jul 26, 2014

Add a URL field to region table

Steve Martinelli

NEW

Jul 15, 2014

Jul 27, 2014

remove static files from docs

Steve Martinelli

MERGED

Jul 25, 2014

Jul 25, 2014

Sqlite files excluded from the repo

Victor Morales

NEW

Jul 24, 2014

Jul 26, 2014

Clean up EP-Filter after delete project/endpoint

wanghong

ABANDONED

Apr 15, 2014

Jul 25, 2014

add --rebuild option for ssl/pki_setup

wanghong

NEW

Apr 17, 2014

Jul 25, 2014

trustor_user_id not available in v2 trust token

wanghong

NEW

Jun 23, 2014

Jul 21, 2014

auth tests should not require admin token

wanghong

MERGED

Jun 23, 2014

Jul 26, 2014

Do not consume trust uses when create token fails

wanghong

NEW

Jun 30, 2014

Jul 25, 2014

add internal delete notification for endpoint

wanghong

MERGED

Jul 21, 2014

Jul 25, 2014

Clean up EP-Filter after delete project/endpoint

wanghong

MERGED

Jul 25, 2014

Jul 25, 2014

Notes

Icon
 

  • No labels