796198f196
Without this patch, the token formatter does not have enough data to construct a token created with an application credential. This means that if the token cache is disabled or expired, when keystone goes to create the token it will not find any application credential information and will not recreate the application_credential_restricted parameter in the token data. This patch creates a new Payload class for application credentials so that the application credential ID is properly persisted in the msgpack'd payload. It also adds more data to the token data object so that the application credential ID and name as well as its restricted status is available when the token is queried. Co-authored-by: Lance Bragstad <lbragstad@gmail.com> Change-Id: I322a40404d8287748fe8c3a8d6dc1256d935d84a Closes-bug: #1750415
8 lines
308 B
YAML
8 lines
308 B
YAML
---
|
|
fixes:
|
|
- |
|
|
[`bug 1750415 <https://bugs.launchpad.net/keystone/+bug/1750415>`_]
|
|
Fixes an implementation fault in application credentials where the
|
|
application credential reference was not populated in the token data,
|
|
causing problems with the token validation when caching was disabled.
|