The token hash functions always used MD5. With this change, the
hash function can be passed in to the hash functions.
SecurityImpact
Related-Bug: #1174499
Change-Id: Ia08c2d6252bb034087a244b47d5bcbea7dcfa70b
This decorator allow us to define that certain parameters are strictly
keyword arguments only, without sacrificing the convenience of having
those arguments listed in the function definition.
This will mean that we are no longer trapped maintaining backwards
compatibility for the order of keyword arguments.
The enforcement levels should allow us to start putting warnings on
existing functions and strict enforcement on new functions.
Partial-Bug: #1295881
Change-Id: Ic0a196874930e7be8362df50594471ab8037c5b2
We don't need vim modelines in each source file, it can be set in
user's vimrc.
Change-Id: Ic7a61430a0a320ce6b0c4518d9f5d988e35f8aae
Closes-Bug: #1229324
Using common method 'bool_from_string' from oslo strutils to replace
utils.string_to_bool.
partially implements blueprint common-client-library-2
Change-Id: I22ee9c5a4b48e85606e033ab87d4adb72b665ee6
Use six.iteritems to replace dictionary.iteritems() on python2 or
dictionary.items() on python3.
Change-Id: I972f065414e22d287bd7e00ab2c6e754f17afb75
Signed-off-by: Chuck Short <chuck.short@canonical.com>
convert the non-english username str to unicode,
then the converted username can match the username from db.
Fixes bug #1221576
Change-Id: I9e5f941fe43f081d75750e3f4754e8beea8210db
Fixing a couple locations that could potentially raise NameErrors
instead of intended exceptions. These were found by looking at
flake8 F821 (undefined name) errors.
Added in unit tests to verify NameErrors would not be raised.
Change-Id: I8619cb0be495b814335a5aea23daca025484d3c6
Adding an extra pair of braces helps here to
let Python 3.x interpret it as print function,
while not confusing the Python 2.x print operator.
Change-Id: I05af267ecfbcc80753726743fdf82c330350afcb
This patch allows the ability for user password to be updated via
a command prompt so the password doesnt show up in the bash history.
The prompted password is asked twice to verify the match.
If user cntl-D's the prompt a message appears suggesting user to use
either of the options to update the password.
Fixes: bug#938315
Change-Id: I4271ae569b922f33c34f9b015a7ee6f760414e39
PrettyTable 0.7.2 defaults to print a table even if
the resultset is empty. Restore previous behavior
to be in line with older prettytable releases.
Change-Id: Idd1d0c2c2f41966076517cbc8819ba9a5e097306
keystone user-list output is ordered by 'id' now.
But this order(by 'id') is not human-friendly. Sorting by 'name' is easy to
identify a user.
This patch fixes this problem.
Fixes bug 1073437
Change-Id: I00b1f46c248544157e09b2efccfff63a1f0426aa
This step in the process duplicates the auth-token code to keystoneclient but,
for the moment, leaves a copy in its origional location in keystone.
Testing for auth-token is also copied across, as is the cms support file.
Although no other project will yet pick up the code here in the client, since
the paste.ini files haev not yet been updated, it would work if anyone
did reference it.
Once the client code is in, the next step is to update all the other
project paste files, and then finally retire the code from keystone.
Change-Id: I88853a373d406020d54b61cba5a5e887380e3b3e
adding in openstack theming
enabling last update from git
removing old manual references to API, converted entirely to autodoc
updated .gitignore
fixed docstring warnings and errors
Change-Id: Id22ddc446331d52cbf56c3462d8b532fc37f64ac
When using Keystone PKI, a token ID can be over 3200 chars long.
Add optional --wrap option to make 'keystone token-get' human readable
fix bug 1053728
Change-Id: Ic3dffa773f9b8fc227a8fe7592a3d87e8e22e510
Updates the print_dict function in utils.py so that it doesn't
try to append a tuple with add_row. According to pydoc add_row
should get passed a list (not a tuple):
Arguments:
row - row of data, should be a list with as many elements as
the table has fields
This fixes a TypeError which can occur with the existing code:
TypeError: can only concatenate list (not "tuple") to list
Fixes LP Bug #1019409.
Change-Id: I16f745afa872106c3bc44c33d88db2a5aacd776c
Fields that are present but unset in a backend (like the email field for
a user created with no email in the KVS backend with the keystone
command line) will appear as "None" when listed, instead of as an empty
field.
Change-Id: I86dc0a204847518e61ba9f6f46d4637d897cfac1
* Fixes bug #936422
* Fixes bug #932223
* Depends on bcwaldon's review: https://review.openstack.org/#change,4305
* This review proposes making changes outlined in this spreadsheet:
https://docs.google.com/spreadsheet/ccc?key=0Ak6TA47h_6fwdGZwRE5WWEJBdEhnckpMTG5RcWFjY3c#gid=0
This cleans up the CLI, normalizing commands and arguments, correcting
optional and required arguments and flags.
* included https://review.openstack.org/4270 here per Brian's request
Note that some commands have changed names to conform to noun-verb form:
user-update-password -> user-password-update
add-user-role -> user-role-add
remove-user-role -> user-role-remove
ec2-create-credentials -> ec2-credentials-create
ec2-list-credentials -> ec2-credentials-list
ec2-delete-credentials -> ec2-credentials-delete
token -> token-get
Change-Id: I8128fa105a1b8002199211f9e475b1a7a6229b8c
- Supports unauthenticated call to Keystone to discover
supported API versions
- Added command-line support (usage: keystone discover)
- Added client support (keystoneclient.genenric client).
Client returns dicts, whereas shell command prints
formated output.
- Added tests for genenric client
- Replicates 'nove discover' in python-novaclient
- Starts to address blueprint keystone-client
- keystone discover output looks like this:
$ keystone discover
Keystone found at http://localhost:35357
- supports version v1.0 (DEPRECATED) here http://localhost:35357/v1.0
- supports version v1.1 (CURRENT) here http://localhost:35357/v1.1
- supports version v2.0 (BETA) here http://localhost:35357/v2.0
- and HP-IDM: HP Token Validation Extension
- and OS-KSADM: Openstack Keystone Admin
- and OS-KSCATALOG: Openstack Keystone Catalog
Change-Id: Id16d34dac094c780d36afb3e31c98c318b6071ac
