yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1086189] Re: User is not logged out once his token is revoked by keystone

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Timur Sufiev <tsufiev@xxxxxxxxxxxx>
Date: Fri, 30 Jan 2015 10:57:16 -0000
Reply-to: Bug 1086189 <1086189@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Paul, please investigate this bug in close contact with our Keystone
team. According to what Vlad has told me, there are some weirdness in
Keystone behavior - the user is being logged out not on the next
immediate request after his set of roles has been shrunk, but several
minutes later. Need to find out whether we could eliminate this lag.

** Changed in: django-openstack-auth
       Status: In Progress => Invalid

** Changed in: django-openstack-auth
   Importance: Low => Undecided

** Changed in: django-openstack-auth
     Assignee: Vlad Okhrimenko (vokhrimenko) => (unassigned)

** Changed in: horizon
     Assignee: Vlad Okhrimenko (vokhrimenko) => Paul Karikh (pkarikh)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1086189

Title:
  User is not logged out once his token is revoked by keystone

Status in Django OpenStack Auth:
  Invalid
Status in OpenStack Dashboard (Horizon):
  In Progress

Bug description:
  Once user's token is revoked (due to, for example reducing user's set
  of roles in current tenant), on the next request he is not logged out,
  but instead gets a bunch of 'Unauthorized' errors. Not redirecting
  user in that case to log-in page does not make sense because he can't
  do anything useful without valid token.

To manage notifications about this bug go to:
https://bugs.launchpad.net/django-openstack-auth/+bug/1086189/+subscriptions