Prevent service catalog injection in auth_token.

Updates the auth_token middleware to explicitly prevent
X-Service-Catalog headers from being injected into responses.
In general Keystone would override these with its own service
catalog... however since X-Service-Catalog is optional and
not all implementations/calls return it is good to be safe and
just remove incoming X-Service-Catalog headers if they are set.

Fixes LP Bug #1023998.

Change-Id: I9497937abd1b434b42b40bc943a508dd7f1a3585

0 files changed, 0 insertions, 0 deletions