OpenStack Identity (Keystone)

Go to file

Dolph Mathews 9450cd9699 Handle tokens created and quickly revoked with insufficient timestamp precision In the event that the revocation event is created at the exact same timestamp as the token's creation timestamp, the event's issued_before will equal the token's issued_at and will thus not be revoked (according to the current code). This is much more likely to occur when a token's issue_at timestamp is rounded to whole seconds (rather than carrying microsecond level precision), as they are with Fernet and MySQL. Change-Id: If1f5e546463f189a0b487140a620def545006c25 Closes-Bug: 1484237 Related-Bug: 1488208		2015-08-25 12:58:53 +00:00
config-generator	Switch to oslo.service	2015-06-22 21:20:14 +00:00
doc	Update 'doc/source/setup.rst'.	2015-08-18 10:55:02 +08:00
etc	Updating sample configuration file	2015-08-20 03:29:56 +00:00
examples/pki	Example JSON files should be human-readable	2014-07-19 18:09:06 -04:00
httpd	Fixes grammar in the httpd README	2015-07-10 12:07:13 +00:00
keystone	Handle tokens created and quickly revoked with insufficient timestamp precision	2015-08-25 12:58:53 +00:00
rally-jobs	Add more Rally scenarios	2015-06-08 16:32:36 +03:00
tools	Add necessary executable permission	2015-08-19 10:57:34 +08:00
.coveragerc	Add tests dir to the coverage omit list	2013-09-30 16:07:03 -04:00
.gitignore	Sqlite files excluded from the repo	2014-07-23 20:56:19 -05:00
.gitreview	Add .gitreview config file for gerrit.	2011-10-24 14:48:03 -04:00
.mailmap	Merge "Update mailmap entry for Brant"	2014-06-04 00:37:27 +00:00
.testr.conf	Move existing tests to unit	2015-02-13 15:54:29 -06:00
CONTRIBUTING.rst	Workflow documentation is now in infra-manual	2015-05-16 14:55:07 +00:00
HACKING.rst	Use oslo.log instead of incubator	2015-02-14 05:34:52 +00:00
LICENSE	Added Apache 2.0 License information.	2012-02-15 17:48:33 -08:00
MANIFEST.in	Update MANIFEST.in	2015-06-28 11:01:35 -05:00
README.rst	Replace github reference by git.openstack.org and change a doc link	2015-05-07 10:08:10 +08:00
babel.cfg	setting up babel for i18n work	2012-06-21 18:03:09 -07:00
bandit.yaml	Replace blacklist_functions with blacklist_calls	2015-06-01 15:12:20 -07:00
openstack-common.conf	Remove fileutils from oslo-incubator	2015-07-07 20:49:39 +00:00
requirements.txt	Updated from global requirements	2015-08-15 20:49:41 +00:00
run_tests.sh	Use bashate to run_tests.sh	2014-12-19 16:25:39 +00:00
setup.cfg	Extras for bandit	2015-08-18 09:40:05 -05:00
setup.py	Updated from global requirements	2015-07-15 01:33:02 +00:00
test-requirements.txt	Extras for bandit	2015-08-18 09:40:05 -05:00
tox.ini	Extras for bandit	2015-08-18 09:40:05 -05:00

README.rst

OpenStack Keystone

Keystone provides authentication, authorization and service discovery mechanisms via HTTP primarily for use by projects in the OpenStack family. It is most commonly deployed as an HTTP interface to existing identity systems, such as LDAP.

Developer documentation, the source of which is in doc/source/, is published at:

http://docs.openstack.org/developer/keystone/

The API specification and documentation are available at:

http://specs.openstack.org/openstack/keystone-specs/

The canonical client library is available at:

https://git.openstack.org/cgit/openstack/python-keystoneclient

Documentation for cloud administrators is available at:

http://docs.openstack.org/

The source of documentation for cloud administrators is available at:

https://git.openstack.org/cgit/openstack/openstack-manuals

Information about our team meeting is available at:

https://wiki.openstack.org/wiki/Meetings/KeystoneMeeting

Bugs and feature requests are tracked on Launchpad at:

https://bugs.launchpad.net/keystone

Future design work is tracked at:

http://specs.openstack.org/openstack/keystone-specs/#identity-program-specifications

Contributors are encouraged to join IRC (#openstack-keystone on freenode):

https://wiki.openstack.org/wiki/IRC

For information on contributing to Keystone, see CONTRIBUTING.rst.