Blueprint assignments for “Keystone”

This listing shows the assignment of work for blueprints currently associated with Keystone. The drafter is responsible for getting the specification correctly written up and approved. The approver is usually the person who would sign off on the specification.

1121 of 121 specifications
Priority Name Definition Delivery Assignee Drafter Approver
4 High Improve list role assignments filtering performance 0 Approved 9 Needs Code Review Samuel de Medeiros Queiroz Samuel de Medeiros Queiroz
4 High Hierarchical administrative boundary 4 Discussion 0 Unknown Arvind Tiwari Arvind Tiwari
4 High Implementing Reseller Use Case with the Hierarchical Multitenancy. 5 New 7 Good progress Raildo Mascena de Sousa Filho Raildo Mascena de Sousa Filho
3 Medium ABFAB Support for Federated Identity 0 Approved 5 Started Ioram Schechtman Sette Adam Young
3 Medium New attributes for SAML Assertion generated by keystone IdP 0 Approved 9 Needs Code Review Rodrigo Duarte Rodrigo Duarte Steve Martinelli
3 Medium Keystone Functional Testing 0 Approved 5 Started David Stanek David Stanek
3 Medium Remove the old-style role grant metadata in assignments 0 Approved 9 Needs Code Review Henry Nash Henry Nash
3 Medium Use stevedore to load drivers 0 Approved 7 Good progress Brant Knudson Brant Knudson
3 Medium Enable tests on non-SQLite databases 0 Approved 5 Started David Stanek David Stanek
3 Medium Cleanup Token Providers 0 Approved 5 Started Morgan Fainberg Morgan Fainberg
3 Medium tokenless auth with x509 client cert 5 New 5 Started Guang Yee Guang Yee
3 Medium Squash Migrations for Kilo (Limit upgrade from I to K) 5 New 0 Unknown Morgan Fainberg
3 Medium Sample extension that stores additional attributes for an existing entity 5 New 0 Unknown Henry Nash Henry Nash
2 Low Convert SQL migrations to use Alembic 0 Approved 1 Not started Boris Bobrov Adam Young
2 Low Features and Functionality Deprecated as of Liberty 0 Approved 5 Started Keystone Drivers Morgan Fainberg Keystone Drivers
2 Low Expand the caching layer in keystone 0 Approved 6 Slow progress Morgan Fainberg Morgan Fainberg
2 Low Make it possible to disable the storing of SQL extra attributes 0 Approved 0 Unknown Henry Nash Henry Nash
2 Low Squash icehouse migrations 0 Approved 1 Not started Boris Bobrov Boris Bobrov Morgan Fainberg
2 Low Add timestamp to User, Project, etc. models 0 Approved 9 Needs Code Review wanghong Gabriel Hurley Steve Martinelli
2 Low Add more code style automation 0 Approved 0 Unknown David Stanek David Stanek
2 Low Non-persistent PKI tokens 0 Approved 7 Good progress Morgan Fainberg Dolph Mathews
2 Low Get Keystone Running in Python 3 0 Approved 6 Slow progress David Stanek David Stanek
2 Low Features and Functionality removed as of Liberty 0 Approved 5 Started Keystone Drivers Morgan Fainberg Keystone Drivers
2 Low Restructure Tests 0 Approved 0 Unknown David Stanek David Stanek
2 Low Revocation events using integers, not UUIDs 0 Approved 0 Unknown Adam Young Adam Young
2 Low Rationalize our SQL/LDAP backend testing 0 Approved 1 Not started Henry Nash Henry Nash
2 Low Basic-Auth 1 Pending Approval 0 Unknown Adam Young Adam Young
2 Low Certificate Revocation List distribution 1 Pending Approval 0 Unknown Adam Young
2 Low revoke the associated tokens when deleting EC2 credential 1 Pending Approval 0 Unknown wanghong wanghong
2 Low Session Extendable Length Tokens 1 Pending Approval 0 Unknown Adam Young
2 Low Extend pagination into the identity backends wherever possible to improve scaling and performance 2 Review 6 Slow progress Henry Nash Henry Nash
2 Low Unscoped Service Catalog 2 Review 4 Blocked Jamie Lennox Jamie Lennox
2 Low Convert Token Provider into Pipeline 4 Discussion 0 Unknown Adam Young
2 Low Prefer to check the constraints in the manager level 5 New 0 Unknown Dave Chen Dave Chen
2 Low Remove Hacks Put In Place for Python 2.6 Support 5 New 7 Good progress David Stanek David Stanek
1 Undefined Backends' Tests Restructuration 0 Approved 0 Unknown Samuel de Medeiros Queiroz Samuel de Medeiros Queiroz
1 Undefined Assignment Manager Cleanup 1 Pending Approval 0 Unknown Samuel de Medeiros Queiroz Samuel de Medeiros Queiroz
1 Undefined Implement domain specific hierarchical roles 1 Pending Approval 1 Not started Henry Nash Henry Nash
1 Undefined Need to filter on region for installs of multiple regions 3 Drafting 1 Not started Victor Howard sridhar basam
1 Undefined Add a new admin-readonly role 4 Discussion 0 Unknown Malini Bhandaru
1 Undefined Distributed database backend for keystone 4 Discussion 0 Unknown Ajaya Agrawal Ajaya Agrawal
1 Undefined Make email a first class user attribute 4 Discussion 0 Unknown Henry Nash
1 Undefined Creating a policy sample containing cloud_admin, project_admin and project_member roles 4 Discussion 8 Beta Available Andre Aranha Andre Aranha
1 Undefined SAML Logout Keystone Token Revocation Support 4 Discussion 0 Unknown Brad Topol
1 Undefined quotas on number of users and projects per domain 4 Discussion 0 Unknown
1 Undefined Attribute access privilege based on role 5 New 0 Unknown Arvind Tiwari
1 Undefined Attribute Based Access Control Model 5 New 0 Unknown UTSA-ICS Xin Jin
1 Undefined Replace db_sync and db_version with a set of db-related commands 5 New 0 Unknown Boris Bobrov Boris Bobrov
1 Undefined Client SSL certificate authorization 5 New 0 Unknown
1 Undefined Cloud or region namespaces 5 New 0 Unknown Arvind Tiwari Arvind Tiwari
1 Undefined Reducing size of PKI token 5 New 9 Needs Code Review Vladimir Eremin Vladimir Eremin
1 Undefined Synchronization of delegation changes in distributed environment 5 New 0 Unknown Alexander Makarov Alexander Makarov Henry Nash
1 Undefined Create a unified request identifier 5 New 0 Unknown Tiago Rodrigues de Mello Tiago Rodrigues de Mello
1 Undefined Deprecate pki_setup and ssl_setup 5 New 0 Unknown Adam Young
1 Undefined Dual Scoped Token 5 New 0 Unknown Raildo Mascena de Sousa Filho Raildo Mascena de Sousa Filho
1 Undefined Dynamic Policy Overview 5 New 0 Unknown Adam Young
1 Undefined generate ec2 keypairs from tokens 5 New 7 Good progress Matthieu Huin
1 Undefined External authentication plugins 5 New 0 Unknown Brant Knudson
1 Undefined Setup for Functional Testing 5 New 0 Unknown David Stanek
1 Undefined Generic Signature Validation 5 New 5 Started Nachiappan Nachiappan
1 Undefined HMAC Signature Based Token 5 New 0 Unknown Arvind Tiwari Arvind Tiwari
1 Undefined K2K Project federation 5 New 0 Unknown Arvind Tiwari Arvind Tiwari
1 Undefined Generate 'keystone.conf.sample' dynamically 5 New 0 Unknown Dave Chen Dave Chen
1 Undefined Keystone HA In Multisite Scenario 5 New 0 Unknown Zhipeng Zhipeng
1 Undefined LDAP Authentication using compare() method 5 New 0 Unknown mrhearn
1 Undefined Add materialized path to project model 5 New 0 Unknown Alexander Makarov Rodrigo Duarte
1 Undefined Merge Role Id inoto Role Name 5 New 0 Unknown Adam Young
1 Undefined List Revocation Events 5 New 0 Unknown Alexander Makarov
1 Undefined Modify the policy file 5 New 0 Unknown Andre Aranha Andre Aranha
1 Undefined Multi Factor Authentication 5 New 0 Unknown werner mendizabal werner mendizabal
1 Undefined Multiple Keystone Signing Certificates 5 New 0 Unknown Adam Young
1 Undefined object-dependency-lifecycle 5 New 0 Unknown David Stanek
1 Undefined A Policy Administration Service for Openstack 5 New 0 Unknown Ioram Schechtman Sette
1 Undefined Customized and Pluggable Access Control Module in Keystone to Enable Multi-Tenancy 5 New 0 Unknown WuKong
1 Undefined Policy rules mangaged from a database 5 New 0 Unknown Ioram Schechtman Sette
1 Undefined Policy Default 5 New 0 Unknown Adam Young Adam Young
1 Undefined Policy enforcement library 5 New 0 Unknown Rodrigo Duarte Rodrigo Duarte
1 Undefined A proposal for RBAC policies to support instance access control 5 New 0 Unknown zhouhua
1 Undefined Project Hierarchy Recursive Deletion 5 New 0 Unknown Rodrigo Duarte Rodrigo Duarte
1 Undefined Use Redis as a backend for key-value storage 5 New 0 Unknown Alexander Makarov Alexander Makarov
1 Undefined Add a description to the role 5 New 0 Unknown Eric Brown Eric Brown
1 Undefined support name and id in role,user,tenant query 5 New 0 Unknown LIU Yulong
1 Undefined Swift backend for keystone token 5 New 0 Unknown Mehdi Abaakouk
1 Undefined Authentication using trust-scoped token 5 New 0 Unknown Alexander Makarov
1 Undefined Unified Access Info 5 New 0 Unknown Adam Young Adam Young
1 Undefined unify endpoint filter models 5 New 0 Unknown wanghong wanghong
1 Undefined Keystone queries logger 5 New 0 Unknown Boris Bobrov
1 Undefined Use debtcollector in Keystone 5 New 0 Unknown Boris Bobrov Boris Bobrov
1 Undefined add v3 extension api 5 New 0 Unknown wanghong wanghong
1 Undefined Use oslo-versioned-objects to help with dealing with upgrades 5 New 0 Unknown Kamil Rykowski Kamil Rykowski
1 Undefined Virtual Organisation Role Management 5 New 0 Unknown Ioram Schechtman Sette David Chadwick
0 Not Effiecintly Check Token against revocation list 1 Pending Approval 0 Unknown Adam Young Adam Young
0 Not Support for LDAP posixGroups with the 'user_member_attribute' setting 1 Pending Approval 0 Unknown Brandon Miles Brandon Miles
0 Not Keystone should respond to Web Browser with HTML 1 Pending Approval 0 Unknown Adam Young Adam Young
0 Not Bulk operations for keystone 3 Drafting 0 Unknown Joshua Harlow
0 Not Provide a DNS backend to the Service Catalog 3 Drafting 1 Not started Adam Young
0 Not Allow additional data to be requested for API GET calls to minimise N+1 performance problem 3 Drafting 1 Not started Henry Nash Henry Nash
0 Not totp-for-mfa 3 Drafting 0 Unknown Joe Savak
0 Not Access Key Authentication 4 Discussion 1 Not started Guang Yee
0 Not Permit NSS as alternative crypto provider 5 New 0 Unknown John Dennis
0 Not Api Based Layout 5 New 0 Unknown Jamie Lennox Jamie Lennox
0 Not Extend notifications to catalog (services and endpoints) 5 New 1 Not started Fabio Giannetti
0 Not Work plans for establishing sets of delgations 5 New 0 Unknown Adam Young Adam Young
0 Not Domain-Level Trusts 5 New 0 Unknown Bo Tang
0 Not Dynamic filter discovery on REST API 5 New 1 Not started Arvind Tiwari Arvind Tiwari
0 Not Service user authentication via X509 Certificates 5 New 1 Not started Adam Young
0 Not Pecan in Keystone 5 New 0 Unknown Jamie Lennox
0 Not Password Rotation and Credential Lifecycle 5 New 7 Good progress David Stanek Fabio Giannetti
0 Not Scope access to Credentials by Project 5 New 0 Unknown Adam Young
0 Not Make role-assignment a first class entity 5 New 1 Not started Henry Nash Henry Nash
0 Not Re-order terms in role assignment API URLs 5 New 0 Unknown Henry Nash Henry Nash
0 Not Enable response data segmentation for UI clients 5 New 0 Unknown Fabio Giannetti
0 Not Service_id binding with role definition 5 New 0 Unknown Arvind Tiwari Arvind Tiwari
0 Not SSSD Identity Backend 5 New 0 Unknown Adam Young Adam Young
0 Not Require/enforce strong admin/users passwords in built-in Identity Service 5 New 1 Not started Cristian Fiorentino Cristian Fiorentino
0 Not Tenant start and end dates 5 New 0 Unknown Cristian A Sanchez
0 Not Token issuance should be a pipeline 5 New 1 Not started
0 Not Store the token HASH in Secure Cookie for HTML clients 5 New 0 Unknown Adam Young
0 Not Restricting Trusted Attributes from Federated IDPs 5 New 0 Unknown Kristy Siu
0 Not OpenStack VPC 5 New 0 Unknown Subbu Allamaraju
0 Not X.509 SSL Client Certificate Authentication 5 New 0 Unknown Guang Yee Guang Yee
1121 of 121 specifications