Skip to end of metadata
Go to start of metadata

OpenStack Identity (Keystone)

Keystone is a cloud identity service written in Python.

Project Description

CODE Repository - https://github.com/openstack/keystone Releases - https://github.com/openstack/keystone/tags DOCUMENTATION For Users - http://docs.openstack.org/ For Contributors - http://keystone.openstack.org/ COMMUNITY Wiki - http://wiki.openstack.org/keystone Meetings - http://wiki.openstack.org/Meetings/KeystoneMeeting Mailing Lists - http://wiki.openstack.org/MailingLists IRC - #openstack on http://freenode.net/

 

Active Project Series

Series

Summary

Status

Active Milestone(s)

Keystone future series

The future series tracks work that is necessary but will not land (or be completed) in the current development cycle.

Future

Keystone grizzly series

This is the "grizzly" series.

Current Stable Release

 

Keystone havana series

This is the "havana" series.

Active Development

Keystone icehouse series

This is the "icehouse" series.

Future

Project Code:

openstack/keystone

Repository URL:

https://github.com/openstack/keystone

Launchpad Project:

OpenStack Identity (Keystone)

Project Activity Dashboard:

Project Activity

Project Contributors Activity:

Project Contributors Activity

Repository

Active Bugs in the past 7 days

Bug Importance Reporter Assigned Date Assigned Assignee Status
Testing of results of entity lists does not check that the command part of the url is in the 'self' link Undecided Alexey Miroshkin (info) Jul 24, 2014 Alexey Miroshkin New
sqlite files should be excluded from the scope of the repo Undecided Victor Morales (info) Jul 24, 2014 Victor Morales In Progress
Trust unit tests should target additional threat scenarios Undecided Nathan Kinder (info) Jul 23, 2014 Nathan Kinder In Progress
mis-use of XML canonicalization in keystone tests Undecided Mike Bayer (info) Jul 23, 2014 David Stanek In Progress
tempest.api.identity.admin.v3.test_tokens.TokensV3TestJSON.test_rescope_token race fails with DB2 Undecided Matt Riedemann (info) Jul 23, 2014 Brant Knudson In Progress
Invalid links section for get access token Medium Steve Martinelli (info) Jul 23, 2014 Sergey Nuzhdin Triaged
Not all db.sqal.session methods are wrapped by wrap_db_error Undecided Boris Pavlovic (info) Jul 23, 2014 Ilya Pekelny In Progress
v2.0/tenants/tenantId reports 404 Undecided Kanagaraj Manickam (info) Jul 23, 2014 Kanagaraj Manickam New
Ldap Live test failures Undecided Arun Kant (info) Jul 22, 2014 Arun Kant New
keystone v2.0 API docs reported with invalid information Undecided Kanagaraj Manickam (info) Jul 22, 2014 Kamlesh Kapoor New
CRUD grant don't check user_id and group_id Low Marcos Lobo (info) Jul 18, 2014 Marcos Lobo In Progress
Cannot Use existing auth plugins with new methods Wishlist Adam Young (info) Jul 18, 2014 Adam Young In Progress
Versionless GET on keystone gives different answer with port 5000 and 35357 High David Kranz (info) Jul 17, 2014 Adam Young Triaged
"Self" link in v3 collections omits any url filters Low Henry Nash (info) Jul 16, 2014 Alexey Miroshkin In Progress
add internal notification for endpoint Wishlist wanghong (info) Jul 4, 2014 wanghong In Progress
Allow LDAP account lock attributes to be used as enable attributes Wishlist Nathan Kinder (info) Jul 3, 2014 Nathan Kinder In Progress
LDAP attributes mapped to None can cause 500 errors Low Nathan Kinder (info) Jun 28, 2014 Nathan Kinder Fix Committed
run_tests should strictly be a wrapper for tox Wishlist Morgan Fainberg (info) Jun 28, 2014 Adam Young In Progress
HEAD and GET inconsistencies in Keystone Medium Morgan Fainberg (info) Jun 25, 2014 Morgan Fainberg Fix Committed
Keystone token poor performance. Need index on user_id Medium Haneef Ali (info) Jun 23, 2014 Justin Shepherd In Progress
do not use default=None for config options Low Christian Berendt (info) Jun 20, 2014 wanghong Fix Committed
Eliminate use of with_lockmode('update') Medium Morgan Fainberg (info) May 31, 2014 Morgan Fainberg In Progress
Always migrate the the db for extensions instead of conditionally Medium Julien Vey (info) May 29, 2014 Steve Martinelli Fix Committed
jsonutils should use simplejson on python 2.6 if available Low Ihar Hrachyshka (info) Apr 29, 2014 Ihar Hrachyshka Fix Committed
get_group_project_roles() asks same ldap query for all groups associated with user Medium alexius ludeman (info) Apr 4, 2014 Morgan Fainberg Fix Committed
Reconnect on failure for multiple servers always connects to first server Low Maru Newby (info) Apr 1, 2014 wanghong Triaged
Enforce alphabetical ordering in requirements file Wishlist Eric Guo (info) Feb 27, 2014 ChenZheng In Progress
wrong order of assertEquals args Wishlist Ilya Tyaptin (info) Feb 19, 2014 David Stanek In Progress
When using per-domain-identity backend, user_ids could collide Wishlist Morgan Fainberg (info) Feb 11, 2014 Henry Nash Fix Committed
extraneous vim editor configuration comments Wishlist Terri Yu (info) Feb 8, 2014 Eric Guo Fix Committed
Some Python requirements are not hosted on PyPI High Jeremy Stanley (info) Jan 16, 2014 Brant Knudson Fix Committed
Password logging High Gabriel Hurley (info) Jul 17, 2012 Dolph Mathews Fix Released
DB2 deadlock error not detected Undecided Bryan Jones (info) New
Error running keystone-manage token_flush Undecided Adam Huffman (info) New
LDAP: naming attribute ... is not present in entry; Naming violation Medium eraser (info) Incomplete
Middeware auth_token fails with scoped federated saml token Undecided Mahesh Sawaiker (info) New
Revocation events are broken with mysql Undecided Brant Knudson (info) New
dependency injection fails to init domain-specific identity drivers Medium Mark Miller (info) Incomplete
keystone under apache can't handle request chunking Low David Patterson (info) New
keystone uses incorrect OS_AUTH_URL Undecided Ted Elwartowski (info) Incomplete
keystone will not auth users if there is a bad endpoint Undecided Matt Fischer (info) New
memcache backend token can not delete a token Undecided Tiantian Gao (info) Incomplete
run_tests.sh does not work if keystone is not installed Wishlist Johannes Erdfelt (info) Confirmed

 

Active Reviews in the past 7 days

Review

Owner

Status

Created

Updated

Updated from global requirements

MERGED

Jun 28, 2014

Jul 18, 2014

Updated from global requirements

MERGED

Jul 10, 2014

Jul 22, 2014

Imported Translations from Transifex

NEW

Jul 15, 2014

Jul 23, 2014

Updated from global requirements

NEW

Jul 22, 2014

Jul 22, 2014

Keystone service throws error on SIGHUP signal

Abhishek Kekane

NEW

Jul 16, 2014

Jul 21, 2014

Ability to turn off ldap referral chasing

Adam Young

NEW

May 9, 2014

Jul 22, 2014

Migrate default extensions

Adam Young

MERGED

May 29, 2014

Jul 17, 2014

No default assignment backend

Adam Young

NEW

Jul 17, 2014

Jul 17, 2014

Do not require method attribute on plugins

Adam Young

NEW

Jul 18, 2014

Jul 21, 2014

add stevedore for testing with Keystoneclient master

Alan Pevec

MERGED

Jul 15, 2014

Jul 17, 2014

Add tests to OS-INHERIT extension

Andre Aranha

NEW

Jul 16, 2014

Jul 17, 2014

Add information regarding HTTPS for SSL enabled endpoints

Andre Naehring

NEW

May 26, 2014

Jul 21, 2014

Adding support for ldap connection pooling.

Arun Kant

NEW

May 23, 2014

Jul 23, 2014

Add sample of rally plugin

Boris Pavlovic

NEW

Jun 9, 2014

Jul 21, 2014

Remove fixture from openstack-common.conf

Brant Knudson

NEW

Jun 27, 2014

Jul 17, 2014

Use config fixture from oslo.config

Brant Knudson

NEW

Jun 27, 2014

Jul 17, 2014

JSON-Home for V3

Brant Knudson

NEW

Jul 1, 2014

Jul 23, 2014

Use oslo.i18n

Brant Knudson

MERGED

Jul 3, 2014

Jul 18, 2014

Add pluggable range functions for token flush

Clayton O'Neill

NEW

Jun 22, 2014

Jul 21, 2014

Adds a fork of python-ldap for Py3 testing

David Stanek

NEW

May 27, 2014

Jul 17, 2014

Middleware tests now run under Python3

David Stanek

NEW

Jun 12, 2014

Jul 17, 2014

Fixes test_exceptions.py for Python3

David Stanek

MERGED

Jun 26, 2014

Jul 22, 2014

Fixes a Python3 syntax error

David Stanek

MERGED

Jun 26, 2014

Jul 21, 2014

Adds several more test modules that pass on Py3

David Stanek

MERGED

Jun 26, 2014

Jul 22, 2014

Fixes test_wsgi for Python3

David Stanek

MERGED

Jun 26, 2014

Jul 22, 2014

Regenerate sample config file

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Fixed tox cover environment to share venv

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Adds coverage report to py33 test runs

David Stanek

MERGED

Jul 21, 2014

Jul 22, 2014

Fixes a capitalization issue

David Stanek

NEW

Jul 22, 2014

Jul 23, 2014

Reduces the amount of mocked imports for Python 3

David Stanek

MERGED

Jul 22, 2014

Jul 22, 2014

Disables LDAP unit tests

David Stanek

MERGED

Jul 22, 2014

Jul 22, 2014

Add the new oslo.i18n as a dependency for Python 3

David Stanek

NEW

Jul 22, 2014

Jul 23, 2014

Adding more descriptive error message

Dolph Mathews

NEW

Apr 14, 2014

Jul 22, 2014

project disabled/deleted notification recommendations

Dolph Mathews

MERGED

Jul 14, 2014

Jul 21, 2014

implement GET /v3/catalog

Dolph Mathews

MERGED

Jul 14, 2014

Jul 21, 2014

move GET /v3/catalog to GET /v3/auth/catalog

Dolph Mathews

NEW

Jul 18, 2014

Jul 21, 2014

Register all backend classes as entry points

Doug Hellmann

NEW

Apr 21, 2014

Jul 18, 2014

X.509 SSL certificate authentication plugin

Guang Yee

NEW

Jul 1, 2014

Jul 23, 2014

Fixes the order of assertEqual arguments

Haiwei Xu

MERGED

Mar 3, 2014

Jul 17, 2014

Example JSON files should be human-readable

Harry Rybacki

MERGED

Jul 19, 2014

Jul 21, 2014

Loggin Test - DO NOT MERGE

Henry Nash

ABANDONED

Jul 3, 2014

Jul 19, 2014

Comparision of database models and migrations.

Ilya Pekelny

NEW

Mar 14, 2014

Jul 22, 2014

Use metadata.create_all() to fill a test database

Ilya Pekelny

NEW

May 14, 2014

Jul 21, 2014

Catch correct oslo.db exception

Ilya Pekelny

NEW

Jul 23, 2014

Jul 23, 2014

Add restricted catalog to unscoped token

Jamie Lennox

NEW

Jul 22, 2014

Jul 22, 2014

Redirect stdout and stderr when using subprocess

Jeffrey Zhang

NEW

Oct 14, 2013

Jul 18, 2014

Initial kerberos plugin implementation.

Jose Castro Leon

NEW

Feb 18, 2014

Jul 18, 2014

Refactor set domain-id and mapping code

Juan Antonio Osorio Robles

NEW

Jul 17, 2014

Jul 19, 2014

Introduce pragma no cover to asbtract classes

Juan Antonio Osorio Robles

MERGED

Jul 17, 2014

Jul 19, 2014

Adding an index on token.user_id

Justin Shepherd

NEW

Jun 23, 2014

Jul 22, 2014

Check that region ID is not an empty string

Kévin Bernard-Allies

NEW

May 23, 2014

Jul 22, 2014

Initial implementation of validator

Lance Bragstad

MERGED

Apr 10, 2014

Jul 22, 2014

Implement validation on Assignment V3 resources

Lance Bragstad

NEW

Apr 10, 2014

Jul 23, 2014

Implement validation on Catalog V3 resources

Lance Bragstad

NEW

May 28, 2014

Jul 22, 2014

Implement validation on Credential V3

Lance Bragstad

NEW

Jun 6, 2014

Jul 22, 2014

Implement validation on Policy V3 API

Lance Bragstad

NEW

Jul 2, 2014

Jul 22, 2014

Implement validation on Trust V3 API

Lance Bragstad

NEW

Jul 2, 2014

Jul 23, 2014

Add string id type validation

Lance Bragstad

NEW

Jul 22, 2014

Jul 23, 2014

Check the url format when create endpoint

Marcos Lobo

NEW

May 13, 2014

Jul 23, 2014

Group related methods for LDAP backend

Marcos Lobo

NEW

Jun 24, 2014

Jul 23, 2014

CRUD grant functions don't check user_id and group_id

Marcos Lobo

NEW

Jul 18, 2014

Jul 23, 2014

Use CMS to decode PKI tokens

Morgan Fainberg

ABANDONED

Feb 14, 2014

Jul 22, 2014

Pass token expiry to the .create_token() method

Morgan Fainberg

ABANDONED

Feb 15, 2014

Jul 17, 2014

Remove `with_lockmode` use from Trust SQL backend.

Morgan Fainberg

NEW

May 31, 2014

Jul 22, 2014

Make run_tests.sh a wrapper for tox

Morgan Fainberg

ABANDONED

Jun 28, 2014

Jul 22, 2014

DO NOT MERGE: Performance profiling

Morgan Fainberg

ABANDONED

Jun 28, 2014

Jul 22, 2014

Fix test for get_*_by_name invalidation

Morgan Fainberg

NEW

Jun 29, 2014

Jul 17, 2014

Avoid loading a ref from SQL to delete the ref

Morgan Fainberg

MERGED

Jul 10, 2014

Jul 17, 2014

Add the new Keystone TokenModel

Morgan Fainberg

NEW

Jul 15, 2014

Jul 22, 2014

Consolidate `assert_XXX_enabled` type calls to managers

Morgan Fainberg

MERGED

Jul 16, 2014

Jul 21, 2014

Sync with oslo-incubator

Morgan Fainberg

MERGED

Jul 16, 2014

Jul 17, 2014

Move token_api.unique_id to token_provider_api

Morgan Fainberg

MERGED

Jul 16, 2014

Jul 19, 2014

Move keystone.token.default_expire_time to token.provider

Morgan Fainberg

MERGED

Jul 16, 2014

Jul 19, 2014

Move token persistence classes to token.persistence module

Morgan Fainberg

NEW

Jul 17, 2014

Jul 23, 2014

Mark the 'check_vX_token' methods deprecated

Morgan Fainberg

MERGED

Jul 17, 2014

Jul 22, 2014

Implicitly ignore attributes that are mapped to None in LDAP

Nathan Kinder

MERGED

Jun 28, 2014

Jul 22, 2014

Allow LDAP lock attributes to be used as enable attributes

Nathan Kinder

NEW

Jul 3, 2014

Jul 22, 2014

Pagination for api request to users list

Olga Kopylova

NEW

Dec 26, 2013

Jul 17, 2014

Extracting get group roles for project logic to drivers.

Pablo Fernando Cargnelutti

MERGED

Apr 8, 2014

Jul 21, 2014

better handling for empty/None ldap values

Richard Megginson

NEW

Feb 24, 2014

Jul 18, 2014

Hierarchical Projects

Rodrigo Duarte

NEW

Jul 22, 2014

Jul 22, 2014

LDAP: Added documentation for debug_level option

Ryan Bak

MERGED

May 21, 2014

Jul 17, 2014

Disable a domain will revoke tokens under the same domain

Sam Leong

NEW

Jul 15, 2014

Jul 23, 2014

Update docs to reflect new db_sync behaviour

Steve Martinelli

MERGED

Jul 11, 2014

Jul 17, 2014

Update the configuration docs for the revocation extension

Steve Martinelli

MERGED

Jul 11, 2014

Jul 17, 2014

Add revocation extension to default pipeline

Steve Martinelli

MERGED

Jul 11, 2014

Jul 17, 2014

Add a URL field to region table

Steve Martinelli

NEW

Jul 15, 2014

Jul 18, 2014

Capitalize a few project names in configuring services doc

Steve Martinelli

MERGED

Jul 18, 2014

Jul 19, 2014

Fix variable passed to driver module

wanghong

NEW

Apr 4, 2014

Jul 18, 2014

Clean up EP-Filter after delete project/endpoint

wanghong

NEW

Apr 15, 2014

Jul 19, 2014

add --rebuild option for ssl/pki_setup

wanghong

NEW

Apr 17, 2014

Jul 23, 2014

trustor_user_id not available in v2 trust token

wanghong

NEW

Jun 23, 2014

Jul 21, 2014

auth tests should not require admin token

wanghong

NEW

Jun 23, 2014

Jul 21, 2014

Do not consume trust uses when create token fails

wanghong

NEW

Jun 30, 2014

Jul 21, 2014

add internal delete notification for endpoint

wanghong

NEW

Jul 21, 2014

Jul 23, 2014

Notes

Icon
 

  • No labels