auth_token middleware should use client

Registered by Brant Knudson

The auth_token middleware should be able to use keystoneclient for all its requests to keystone, but the client is missing some key functions. For v2: fetch the revocation list. For v2 and v3: verify tokens and fetch certificates.

Blueprint information

Status:
Complete
Approver:
None
Priority:
Undefined
Drafter:
Brant Knudson
Direction:
Approved
Assignee:
Brant Knudson
Definition:
New
Series goal:
Accepted for kilo
Implementation:
Implemented
Milestone target:
None
Started by
Brant Knudson
Completed by
Adam Young

Related branches

Sprints

Whiteboard

This was discused at the keystone mid-cycle and no spec is required.

Gerrit topic: https://review.openstack.org/#q,topic:bp/auth-token-use-client,n,z

Addressed by: https://review.openstack.org/141935
    Add fetch revocations for v2.0

Addressed by: https://review.openstack.org/141944
    Add validate token for v2.0

Addressed by: https://review.openstack.org/142122
    Add get certificates for v2.0

Addressed by: https://review.openstack.org/142128
    Add fetch revocations for v3

Addressed by: https://review.openstack.org/142147
    Add validate token for v3

Addressed by: https://review.openstack.org/142200
    Add OS-SIMPLE-CERT support for v3.

Addressed by: https://review.openstack.org/142817
    Add sample certificate fixtures

Addressed by: https://review.openstack.org/151471
    Tests use keep_blank_values when parse_qs

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.