keystone/releasenotes/notes/bug-1926483-a77ab887e0e7f5c9.yaml
Lance Bragstad 68bfb685d1 Only log warnings about token length when length exceeds max_token_size
Previously, the fernet token provider would log warnings when a fernet
token exceeded 255 characters, which is common for LDAP-backed
deployments. The warning is always issued, even when operators configure
keystone's max_token_size to a higher value, causing confusion because
it appears the configuration value is silently ignored.

This commit fixes that issue by using the max_token_size configuration
parameter consistently in the fernet token provider.

Closes-Bug: 1926483

Change-Id: I4bb54aac9b950d59082a4468203a3249790839d7
2021-05-03 20:40:31 +00:00

8 lines
255 B
YAML

---
fixes:
- |
[`bug 1926483 <https://bugs.launchpad.net/keystone/+bug/1926483>`_]
Keystone will only log warnings about token length for Fernet tokens when
the token length exceeds the value of `keystone.conf [DEFAULT]
max_token_size`.