- federation
- hierchical multitenancy
- attribute based access controls
- decentralized attribute based access controls
- delegation
- token revocation events
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[dashboard] | |
title = Starred by David Stanek | |
description = | |
foreach = | |
[section "Needs work"] | |
query = is:open starredby:dstanek (label:Code-Review<=-1 OR label:Verified<=-1,jenkins OR label:Workflow-1) -label:Workflow+1 | |
[section "Testing"] | |
query = is:open starredby:dstanek label:Verified+0,jenkins label:Workflow+0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
def _get_user(self, external_id): | |
domain_id, internal_id = self.id_mapping_api.get_mapping(external_id) | |
return self.identity_api[domain_id].get_user(internal_id) |
Every time the client tries to guess something, it gets it wrong.
- guessing whether the user passed in an ID or a name (not all IDs are UUIDs, as in the case of LDAP and legacy deployments)
- guessing intended scope in auth request (domain_id + project_id + trust_id)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
""" | |
Adapted from https://bugs.launchpad.net/ironic/+bug/1298645/comments/2 | |
""" | |
import argparse | |
import os | |
import shutil | |
import tempfile | |
def patch_po_files(input_dir_name): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
oauthlib = None | |
try: | |
import oauthlib | |
except ImportError: | |
pass | |
class requires(object): | |
def __init__(self, f, *requirements): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"token": { | |
"catalog": [ | |
{ | |
"endpoints": [ | |
{"id": "39dc32"}, | |
{"id": "ec642f"}, | |
{"id": "c609fc"} | |
], | |
"id": "4363ae" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@property | |
def access_token(self): | |
if self._access_token is None: | |
from contrib import oauth1 | |
self._access_token = oauth1.Whatever() | |
return self._access_token |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
memcached_servers = 127.0.0.1 | |
token_cache_time = 300 | |
revocation_cache_time = 60 | |
# if your memcached server is shared, use these settings to avoid cache poisoning | |
memcache_security_strategy = ENCRYPT | |
memcache_secret_key = <generate a secret key> | |
# if your keystone deployment uses PKI, and you value security over performance: | |
check_revocations_for_cached = true |
OlderNewer