keystone.git - OpenStack's keystone patches.

diff options

author	Dolph Mathews <dolph.mathews@gmail.com>	2012-09-07 14:35:21 -0500
committer	Thierry Carrez <thierry@openstack.org>	2012-09-12 16:37:17 +0200
commit	efb6b3fca0ba0ad768b3e803a324043095d326e2 (patch)
tree	0a552ff6527df532356bc1e0a02785d125cd8e2c /docs
parent	ee31114d9dfc99bb143241dc547f7b4abeaaafbf (diff)

Delete user tokens after role grant/revoke

Delete user tokens when a new role is granted or revoked, in order to prevent old tokens to continue to be valid for the original set of roles for the remainder of the token's lifespan. Addresses CVE-2012-4413. Fixes bug 1041396. Change-Id: Iecf891f274b67408f568b949a7028362c4c30312

Diffstat (limited to 'docs')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: