yahoo-eng-team team mailing list archive

[OpenStack Infra <1810485@xxxxxxxxxxxxxxxxxx>]

Reviewed:  https://review.openstack.org/628705
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=bb30a51811e467ba57ebc55d09485de2e94cd4bf
Submitter: Zuul
Branch:    master

commit bb30a51811e467ba57ebc55d09485de2e94cd4bf
Author: Guang Yee <guang.yee@xxxxxxxx>
Date:   Fri Jan 4 15:13:39 2019 -0800

    correct the description on domain re-enable
    
    Change-Id: I32daa18880a1e646bff8856799b0d01776f0aa6f
    closes-bug: 1810485


** Changed in: keystone
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1810485

Title:
  incorrect API doc description on domain reenablement

Status in OpenStack Identity (keystone):
  Fix Released

Bug description:
  Looks like the description for domain re-enable is incorrect.

  https://developer.openstack.org/api-ref/identity/v3/?expanded=update-
  domain-detail#domains

  "Users can only authorize against an enabled domain (and any of its
  projects). In addition, users can only authenticate if the domain that
  owns them is also enabled. Disabling a domain prevents both of these
  things. When you disable a domain, all tokens that are authorized for
  that domain become no longer valid. If you reenable the domain, these
  tokens are not re-enabled."

  Fernet token validations are real time. Disabling and subsequently re-
  enabling the domain will not invalidate the token that was issued
  prior to disabling the domain.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1810485/+subscriptions