Light weight session for authorization

Registered by Ilya Sviridov on 2014-08-21

Sending a PKI token every request introduces huge overhead (4-16KB) in bandwith usage.
It is suggested to introduce alternative lightweight mechanism based on HTTP session approach.

Blueprint information

Status:
Complete
Approver:
None
Priority:
Medium
Drafter:
None
Direction:
Needs approval
Assignee:
Alexander Chudnovets
Definition:
Obsolete
Series goal:
Accepted for juno
Implementation:
Informational Informational
Milestone target:
milestone icon 2014.2
Completed by
Ilya Sviridov on 2014-09-29

Related branches

Sprints

Whiteboard

If you are making a call to /v3/auth/token, the v3 token received will contain service catalog which takes up most of the space. If you replace it by /v3/auth/tokens?nocatalog, the size of token reduces to around 1 KB. It is much preferable to do this I think instead of doing session management by magnetodb.
see https://bugs.launchpad.net/python-keystoneclient/+bug/1186177
--ajayaa

Yes. It minimizes the overhead with bandwith. We have to check how it helps and how much CPU it will cost us
--isviridov

Marked as Obsolete according to IRC meeting and ML discussion
http://lists.openstack.org/pipermail/openstack-dev/2014-September/047354.html
--isviridov

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.