keystone

OpenStack Identity (Keystone)

History

Lance Bragstad ceae3566e8 Retry update_user when sqlalchemy raises StaleDataErrors Keystone's update_user() method in the SQL driver processes a lot of information about how to update users. This includes evaluating password logic and authentication attempts for PSI-DSS. This logic is evaluated after keystone pulls the user record from SQL and before it exits the context manager, which performs the write. When multiple clients are all updating the same user reference, it's more likely they will see an HTTP 500 because of race conditions exiting the context manager. The HTTP 500 is due to stale data when updating password expiration for old passwords, which happens when setting a new password for a user. This commit attempts to handle that case more gracefully than throwing a 500 by detecting StaleDataErrors from sqlalchemy and retrying. The identity sql backend will retry the request for clients that have stale data change from underneath them. Change-Id: I75590c20e90170ed862f46f0de7d61c7810b5c90 Closes-Bug: 1885753		10 months ago
..
api	Use app cred user ID in policy enforcement	5 months ago
application_credential	Update hacking for Python3	1 year ago
assignment	Merge "Delete system role assignments from system_assignment table"	6 months ago
auth	Add expiring user group memberships on mapped authentication	1 year ago
catalog	Remove six usage	1 year ago
cmd	[goal] Deprecate the JSON formatted policy file	2 months ago
common	[goal] Deprecate the JSON formatted policy file	2 months ago
conf	[goal] Deprecate the JSON formatted policy file	2 months ago
credential	New config option 'user_limit' in credentials	10 months ago
endpoint_policy	Remove six usage	1 year ago
federation	Support regexes in whitelists/blacklists	11 months ago
identity	Retry update_user when sqlalchemy raises StaleDataErrors	3 weeks ago
limit	Remove six usage	1 year ago
locale	Imported Translations from Zanata	3 months ago
models	fix E225 missing whitespace around operator	5 months ago
oauth1	Stop to use the __future__ module.	11 months ago
policy	Remove six usage	1 year ago
receipt	Remove six usage	1 year ago
resource	Update hacking for Python3	1 year ago
revoke	Remove six usage	1 year ago
server	Merge "Stop to use the __future__ module."	9 months ago
tests	Retry update_user when sqlalchemy raises StaleDataErrors	3 weeks ago
token	Follow-up for bug-1891244	8 months ago
trust	Remove six usage	1 year ago
__init__.py	Revert "Disable eventlet monkey-patching of DNS"	8 years ago
exception.py	New config option 'user_limit' in credentials	10 months ago
i18n.py	Fix translated response	2 years ago
notifications.py	Update hacking for Python3	1 year ago
version.py	Add expiring user group memberships on mapped authentication	1 year ago