OpenStack Identity (Keystone) Middleware
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Go to file
Jorge Merlino e05466c5f4 Remove cache invalidation when using expired token
This can create a race condition for long running services that reuse
their token (eg. Kubernetes Cinder CSI plugin) in this case for

1 [user] Asks nova to attach a volume to a server
2 ...the user's token expires
3 [user] Asks cinder if the volume has been attached
4 [nova] Asks cinder to attach the volume

In step 3 the token is marked as invalid in the cache and step 4 fails
even if allow_expired is true

Closes-Bug: #1987355
Change-Id: Ice8e34440a5fe1baa370646ed70b5e085c4af70e
6 months ago
config-generator generate sample config automatically 7 years ago
doc Merge "Use unittest.mock instead of third party mock" 3 years ago
keystonemiddleware Remove cache invalidation when using expired token 6 months ago
releasenotes Imported Translations from Zanata 9 months ago
.coveragerc Update .coveragerc after the removal of respective directory 7 years ago
.gitignore Updates for stestr 6 years ago
.gitreview OpenDev Migration Patch 4 years ago
.stestr.conf Updates for stestr 6 years ago
.zuul.yaml Merge "Update Python 3 job template" 1 year ago
CONTRIBUTING.rst Use https for * references 6 years ago
HACKING.rst Update URLs in documentation 6 years ago
LICENSE Initial commit 9 years ago
README.rst Update invalid link for README 4 years ago
requirements.txt Drop lower-constraints.txt and its testing 1 year ago
setup.cfg OAuth2.0 Client Credentials Grant Flow Support 10 months ago Updated from global requirements 6 years ago
test-requirements.txt Fix pep8 gate 6 months ago
tox.ini Fix pep8 gate 6 months ago


Team and repository tags


Middleware for the OpenStack Identity API (Keystone)

Latest Version


This package contains middleware modules designed to provide authentication and authorization features to web services other than Keystone <>. The most prominent module is keystonemiddleware.auth_token. This package does not expose any CLI or Python API features.

For information on contributing, see CONTRIBUTING.rst.

For any other information, refer to the parent project, Keystone: