Brant Knudson e5f42db834 Redact tokens in request headers ...

Tokens shouldn't be logged since a token could be gathered from a
log file and used. The client was logging the X-Auth-Token and
X-Subject-Token request headers. With this change, the X-Auth-Token
and X-Subject-Token are shown as "TOKEN_REDACTED".

Also, the "Authentication" header is also redacted.

This is for security hardening.

SecurityImpact

Closes-Bug: #1004114
Closes-Bug: #1327019

Change-Id: I1edc3821ed028471102cc9b95eb9f3b54c9e2778

2014-07-30 15:06:46 -05:00

doc

Move docs to doc.

2012-06-11 13:33:02 -07:00

keystoneclient

Redact tokens in request headers

2014-07-30 15:06:46 -05:00

.coveragerc

Move tests in keystoneclient

2013-09-24 12:34:17 +10:00

.gitignore

Fix auth_token middleware test invalid cross-device link issue

2014-01-07 14:24:07 +01:00

.gitreview

Added in common test, venv and gitreview stuff.

2011-12-22 00:12:22 +00:00

.mailmap

Add mailmap entry

2014-05-07 12:12:43 -07:00

.testr.conf

Move tests in keystoneclient

2013-09-24 12:34:17 +10:00

babel.cfg

enabling i18n with Babel

2012-09-29 16:03:23 -07:00

CONTRIBUTING.rst

Add CONTRIBUTING.rst

2014-07-03 06:48:55 +00:00

HACKING.rst

Make HACKING.rst DRYer and turn into rst file

2013-11-11 11:05:00 -08:00

LICENSE

Initial commit.

2011-10-25 16:50:08 -07:00

MANIFEST.in

Migrate to pbr.

2013-05-17 14:43:31 -07:00

openstack-common.conf

Remove importutils from oslo config

2014-05-05 17:35:04 -05:00

requirements.txt

Updated from global requirements

2014-07-28 19:39:29 +00:00

setup.cfg

SAML2 ECP auth plugin

2014-07-15 23:03:12 +02:00

setup.py

Updated from global requirements

2014-05-22 07:12:03 +00:00

test-requirements.txt

Convert httpretty to requests-mock

2014-07-30 05:04:25 +10:00

tox.ini

Update keystoneclient code to account for hacking 0.9.2

2014-06-19 22:14:47 -04:00

Description

RETIRED, further work has moved to Debian project infrastructure

1.8 MiB