Ubuntu
keystone package

lp://staging/ubuntu/precise-proposed/keystone

  1. Precise (12.04)
  2. precise-proposed
Created by Ubuntu Package Importer and last modified
Get this branch:
bzr branch lp://staging/ubuntu/precise-proposed/keystone
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

28. By Yolanda Robla

* Resynchronize with stable/essex (LP: #1089488):
  - [7402f5e] EC2 authentication does not ensure user or tenant is enabled
    LP: 1121494
  - [8945567] DoS through XML entity expansion (CVE-2013-1664) LP: 1100282
  - [7b5b72f] Add size validations for /tokens.
  - [ef1e682] docutils 0.10 incompatible with sphinx 1.1.3 LP: 1091333
  - [8735009] Removing user from a tenant isn't invalidating user access to
    tenant (LP: #1064914)
  - [025b1d5] Jenkins jobs fail because of incompatibility between sqlalchemy-
    migrate and the newest sqlalchemy-0.8.0b1 (LP: #1073569)
  - [ddb4019] Open 2012.1.4 development
  - [0e1f05e] memcache driver needs protection against unicode user keys
    (LP: #1056373)
  - [176ee9b] Token invalidation in case of role grant/revoke should be
    limited to affected tenant (LP: #1050025)
  - [58ac669] Token validation includes revoked roles (CVE-2012-4413)
    (LP: #1041396)
  - [cd1e48a] Memcached Token Backend does not support list tokens
    (LP: #1046905)
  - [5438d3b] Update user's default tenant partially succeeds without authz
    (LP: #1040626)
* Dropped patches, superseeded by new snapshot:
  - debian/patches/CVE-2013-0282.patch [7402f5e]
  - debian/patches/CVE-2013-1664+1665.patch [8945567]
  - debian/patches/keystone-CVE-2012-5571.patch [8735009]
  - debian/patches/keystone-CVE-2012-4413.patch [58ac669]
  - debian/patches/keystone-CVE-2012-3542.patch [5438d3b]
* Refreshed patches:
  - debian/patches/CVE-2013-0247.patch
  - debian/patches/fix-ubuntu-tests.patch

27. By Adam Gandelman

* New upstream release (LP: #1041120):
  - debian/patches/0013-Flush-tenant-membership-deletion-before-user.patch:
    Dropped.
* Resynchronize with stable/essex:
  - authenticate in ldap backend doesn't return a list of roles
    (LP: #1035428)
  - LDAP should not check username on "sn" field (LP: #997700)
  - Admin API doesn't valid token. (LP: #1006815, #1006822)
  - Memcache token backend eventually stops working. (LP: #1012381)
  - EC2 credentials not migrated from legacy (diablo) database. (LP: #1016056)
  - Deleting tenants or users does not cleanup metadata. (LP: #973243)
  - Deleting tenants does not cleanup its user associations. (LP: #974199)
  - TokenNotFound not raised in testsuite beacuse of timezone issues. (LP: #983800)
  - Token authentication for a user in a disabled tenant does not raise
    Unauthorized error. (LP: #988920)
  - export_legacy_catalog doesn't convert url names correctly. (LP: #994936)
  - Following a password compromise and subsequent password change,
    tokens remain valid. (LP: #996595)
  - Tokens remain valid after a user account is disabled. (LP: #997194)

26. By Chuck Short

* New usptream snapshot. (LP: #1010473)
* Resynchronize with stable/essex:
  - aff45d6 - Make import_nova_auth only create roles which don't already exist
    (LP: #959294)
* debian/patches/0013-Flush-tenant-membership-deletion-before-user.patch: Backported
  fix for "Flush tenant membership deletion before user." (LP: #998137)

25. By Chuck Short

* New upstream version.
* debian/man/keystone.8: Mention that there is a lack of ssl support.

24. By Chuck Short

[Chuck Short]
* New upstream version.
* debian/keystone.install: install tools/{convert_to_sqlite.sh,
  sample_data.sh}

[Adam Gandelman]
* debian/patches/fix-ubuntu-tests.patch: Also skip keystoneclient
  essex 3 tests, add patch description
* debian/keystone.logrotate: Add logrotate config (LP: #962426)

23. By Chuck Short

[Chuck Short]
* New usptream version.
* debian/control: Add python-iso8601 as a depends.
* debian/patches/fix-ubuntu-tests.patch: Disable git checkout on some
  of the tests.
* dropped swift as a depends.

[Adam Gandelman]
* debian/patches/sql_connection.patch: Refresh
* debian/logging.conf: Update and enable file logging (LP: #959610)
* debian/keystone.prerm: Only attempt to cleanup database if it was
  configured during installation. (LP: #948719)
* debian/rules: Fix doc builds + clean (LP: #956019)
* debian/control: Add python-{nova, swift} as Build-Depends, required
  for doc building
* debian/rules, debian/tests/test_overrides.conf: Setup a proper environment
  for unit testing

22. By Adam Gandelman

New upstream release.

21. By Chuck Short

[ Adam Gandleman ]
* debian/patches/keystone-auth.patch: Drop, applied upstream at commit
  29337e66.
* debian/patches/sql_connection.patch: Refresh

[ Chuck Short ]
* New upstream release.
* debian/patches/sql_connection.patch: Refreshed.

20. By Adam Gandelman

debian/keystone.preinst: Create group before creating user (LP: #945299)

19. By Chuck Short

[ Chuck Short ]
* New upstream release.
* debian/keystone.upstart: Update for ksl.
* debian/control: Add python-keystoneclient as dependency.
* debian/control: Fix typo.
* debian/keystone.postinst: Update due to redux branch change.
* debian/keystone.templates, debian/keystone.preinst, debian/kestone.postinst,
  debian/keystone.config, debian/README.Debian: Make keystone installation
  less interactive. (LP: #931236)
* debian/keystone.postinst: Don't create users or run a database sync
  since its not working correctly.
* debian/control: Dropped python-coverage and python-nosexcover.
* debian/changelog: Fixed changelog.
* debian/keystone.templates: Set it to false.
* debian/control: Fix lintian warnings.
* debian/patches/keystone-auth.patch: Backport auth token improvements,
  this can be dropped in the next snapshot.
* debian/control: Add python-memcache as a build dependency.
* debian/keystone-doc.docs: Fix keystone doc builds.
* debian/rules: Temporarily disable doc install.
* debian/control: Add python-ldap and python-lxml.

[ Joseph Heck ]
* debian/control: Dropped python-cli.

[ Adam Gandelman ]
* debian/control: Alphabetize python depends
* debian/control: Add python-{eventlet, greenlet, passlib} to keystone
  depends
* debian/control: Add python-lxml to python-keystone Depends
* Drop 0001-Fix-keystone-all-failure-to-start.patch
* debian/logging.conf: Temporarily use old logging.conf until upstream
  ships something usable
* debain/patches/sql_connection.patch: Switch backends to use SQL backends
* debian/keystone.preinst: Create directories
* debian/keystone.postinst: Remove create_users stuff, add call to 'db_sync'
  on install

[ Dave Walker ]
* debian/patches/sql_connection.patch: Refreshed and reintroduced DEP-3
  headers.
* debian/control: Added Vcs-Bzr field.

[ Andrew Glen-Young ]
* debian/keystone.preinst: Set the primary group to keystone. (LP: #941905)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://staging/ubuntu/quantal/keystone
This branch contains Public information 
Everyone can see this information.

Subscribers