[Yahoo-eng-team] [Bug 1609511] [NEW] flush_expired_tokens API fails when more than 200k tokens in the token table

Public bug reported: When there are over 200k tokens need to be flushed, it results the following error in mysql error.log - 2016-07-29 02:00:18 40452 [Warning] WSREP: transaction size limit (1073741824) exceeded: 1073774592 2016-07-29 02:00:19 40452 [ERROR] WSREP: rbr write fail, data_len: 0,

[Yahoo-eng-team] [Bug 1597024] [NEW] List role_assignments?include_names=False returns Entitys' Names

lter_is_true(cls, filter_value):' defined in common/controller.py returns False when filter_value is 0; anything else return True. Like - if (isinstance(filter_value, six.string_types) and filter_value == '0'): val = False else: val = True So basically it just does not consider value of filter_va

[Yahoo-eng-team] [Bug 1545202] Re: Domain info is not shown in federated token validation response

The response shows the actual group id but the domain shows 'Federated', so that made me to be not sure if that is the intended behavior. Since it's documented, I'm cool with that ;-) ** Changed in: keystone Status: Incomplete => Invalid -- You received this bug notification because you

[Yahoo-eng-team] [Bug 1545202] [NEW] Domain info is not shown in federated token validation response

Public bug reported: When validating a federated token, the group id info shows in the response but the domain info does not show, only shows 'Federated' for both domain id and domain name. HTTP/1.1 200 OK Date: Fri, 12 Feb 2016 21:24:16 GMT Server: Apache/2.4.10 (Debian) X-Subject-Token:

[Yahoo-eng-team] [Bug 1474162] [NEW] ldap unicode issue when doing a show user

Public bug reported: In stable/kilo release, when the username contains non ascii charaters, showing the user from ldap with the following command - openstack user show --domain=ad Test Accent Communiquè will throw an exception. And this has been addressed in the Master branch, so what needs

[Yahoo-eng-team] [Bug 1342274] Re: auth_token middleware in keystoneclient is deprecated

** Also affects: barbican Importance: Undecided Status: New ** Changed in: barbican Status: New = In Progress ** Changed in: barbican Assignee: (unassigned) = Sam Leong (chio-fai-sam-leong) -- You received this bug notification because you are a member of Yahoo

[Yahoo-eng-team] [Bug 1342274] Re: auth_token middleware in keystoneclient is deprecated

** Also affects: designate Importance: Undecided Status: New ** Changed in: designate Assignee: (unassigned) = Sam Leong (chio-fai-sam-leong) ** Changed in: designate Status: New = In Progress -- You received this bug notification because you are a member of Yahoo

[Yahoo-eng-team] [Bug 1342274] Re: auth_token middleware in keystoneclient is deprecated

** Also affects: marconi Importance: Undecided Status: New ** Changed in: marconi Status: New = In Progress ** Changed in: marconi Assignee: (unassigned) = Sam Leong (chio-fai-sam-leong) -- You received this bug notification because you are a member of Yahoo! Engineering

[Yahoo-eng-team] [Bug 1336088] [NEW] Disabling a domain does not disable the previous issued tokens in that domain

Public bug reported: Tokens are still valid although the domain has already been disable. Steps to reproduce. 1. create domain domainA 2. create user userA under domain domainA 3. authenticate to get a token tokenA for user userA 4. disable domainA 6. validate tokenA and it is still a valid

[Yahoo-eng-team] [Bug 1329891] [NEW] Keystone Not Able to Add Users to AD/Ldap and OpenLdap

Public bug reported: I tried to add uses to AD/Ldap through keystone with the following curl command - curl -s -k -H 'X-Auth-Token: ADMIN' -H 'Content-Type: application/json' -d '{user: {name: test7, password: Devtest123}}' http://localhost:35357/v3/users Keystone showed the following stack