openstack
/
keystone
Code Issues Proposed changes
keystone/keystone/credential
History
lhinds 76bd54d491 Adds Bandit #nosec flag to instances of SHA1 
Currently, bandit marks usages of SHA1 as insecure, which
results in false positives for instances of SHA1 in keystone.
However, keystone uses HMAC-SHA1 which is currently considered
secure as opposed to just SHA1 hashing.

This change marks a # nosec comment against the lines which
are triggering the false positives in Bandit in order to
tell bandit to avoid these instances of SHA1.

See [1] for HMAC-SHA1 discussion in keystone

[1] https://review.openstack.org/#/c/453365/

Change-Id: Ibb44db1f8727d014d186b412106d0cd4e2f4a6dd
 		2017-09-07 14:01:35 -05:00
..
backends Make use of Dict-base including extras explicit 2017-02-06 19:15:15 -08:00
providers Adds Bandit #nosec flag to instances of SHA1 2017-09-07 14:01:35 -05:00
__init__.py Create a fernet credential provider 2016-08-18 16:07:13 +00:00
controllers.py Remove get_trust_id_for_request function 2016-07-14 19:01:42 +10:00
core.py Remove stable driver interfaces 2016-09-28 17:18:37 +00:00
provider.py Create a fernet credential provider 2016-08-18 16:07:13 +00:00
routers.py Change the sub-routers to provide JSON Home data 2014-08-26 09:57:15 -05:00
schema.py Made project_id required for ec2 credential 2015-03-06 10:30:18 -08:00