yahoo-eng-team team mailing list archive

Thread
Date

[Bug 904526] Re: ec2tokens passes AWS Access Key ID twice

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Dolph Mathews <904526@xxxxxxxxxxxxxxxxxx>
Date: Fri, 02 Aug 2013 15:51:01 -0000
Reply-to: Bug 904526 <904526@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

I think it's a bit late to see this "fixed" as we have no guarantee that
api clients aren't dependent on the "wrong" value. If anything we should
be testing to ensure that this bug remains and that the two values
match.

** Changed in: keystone
       Status: In Progress => Won't Fix

** Changed in: keystone
     Assignee: Adam Young (ayoung) => (unassigned)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/904526

Title:
  ec2tokens passes AWS Access Key ID twice

Status in OpenStack Identity (Keystone):
  Won't Fix

Bug description:
  The AWS Access Key Id is passed twice in the request to ec2tokens,
  once in the top-level 'access' key, and once in params /
  AWSAccessKeyId.

  {"ec2Credentials": {"access": "e51d453d-e88d-ed8d-886f-f7f91f111a2d",
  "host": "192.168.1.104:8773", "verb": "POST", "params":
  {"SignatureVersion": "2", "AWSAccessKeyId": "e51d453d-e88d-ed8d-886f-
  f7f91f111a2d", "Timestamp": "2011-12-14T00:41:10Z", "SignatureMethod":
  "HmacSHA256", "Version": "2011-01-01", "Action": "DescribeInstances"},
  "signature": "7V3HY0MlPnkxOJ7eNULbA9CiAGkO4ON9EHfVQeeIRq0=", "path":
  "/services/Cloud/"}}HTTP/1.1

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/904526/+subscriptions