Invalidate app cred AFTER deletion
Invalidate the application credential after deletion, not before. This prevents timing issues where an app_cred could remain active after deletion. Change-Id: I14748bf2399e5da4ee360f451a8050f25dd90803
This commit is contained in:
parent
99a0f08de7
commit
906a1d3f68
|
@ -179,9 +179,9 @@ class Manager(manager.Manager):
|
||||||
:raises keystone.exception.ApplicationCredentialNotFound: If the
|
:raises keystone.exception.ApplicationCredentialNotFound: If the
|
||||||
application credential doesn't exist.
|
application credential doesn't exist.
|
||||||
"""
|
"""
|
||||||
|
self.driver.delete_application_credential(application_credential_id)
|
||||||
self.get_application_credential.invalidate(self,
|
self.get_application_credential.invalidate(self,
|
||||||
application_credential_id)
|
application_credential_id)
|
||||||
self.driver.delete_application_credential(application_credential_id)
|
|
||||||
notifications.Audit.deleted(
|
notifications.Audit.deleted(
|
||||||
self._APP_CRED, application_credential_id, initiator)
|
self._APP_CRED, application_credential_id, initiator)
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue