keystone_2014.1.3-6_all.deb


Advertisement

Description

keystone - OpenStack identity service

Distribution: Debian 8 (Jessie)
Repository: Debian Main amd64
Package name: keystone
Package version: 2014.1.3
Package release: 6
Package architecture: all
Package type: deb
Installed size: 495 B
Download size: 270.25 KB
Official Mirror: ftp.br.debian.org
This is the identity service used by OpenStack for authentication (authN) and high-level authorization (authZ). It currently supports token-based authN with user/service authZ, and is scalable to support OAuth, SAML, and OpenID in future versions. Out of the box, Keystone uses SQLite for its identity store database, with the option to connect to external LDAP. This package contains the daemons.

Alternatives

    Download

    Source package: keystone

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install keystone deb package:
      # sudo apt-get install keystone

    Files

    • /etc/cron.hourly/keystone
    • /etc/init/keystone.conf
    • /etc/init.d/keystone
    • /etc/keystone/default_catalog.templates
    • /etc/keystone/keystone-paste.ini
    • /etc/keystone/logging.conf
    • /etc/keystone/policy.json
    • /etc/logrotate.d/keystone
    • /lib/systemd/system/keystone.service
    • /usr/bin/keystone-all
    • /usr/bin/keystone-manage
    • /usr/share/doc/keystone/changelog.Debian.gz
    • /usr/share/doc/keystone/changelog.gz
    • /usr/share/doc/keystone/copyright
    • /usr/share/doc/keystone/keystone.conf.sample.gz
    • /usr/share/doc/keystone/logging.conf.sample
    • /usr/share/doc/keystone/scripts/keystone.base-deployment.sh
    • /usr/share/keystone/keystone.conf
    • /usr/share/lintian/overrides/keystone
    • /usr/share/man/man1/keystone-all.1.gz
    • /usr/share/man/man1/keystone-manage.1.gz

    Changelog

    2015-01-08 - Thomas Goirand <zigo@debian.org> keystone (2014.1.3-6) unstable; urgency=medium * unmask systemd service before starting the init script / unit file. * Removed dbc_upgrade = true check before pkgos_dbc_postinst and db_sync calls (Closes: #767715).

    2015-01-06 - Thomas Goirand <zigo@debian.org> keystone (2014.1.3-5) unstable; urgency=medium * Fix cron job to not error after package removal (Closes: #773494). * Rebuild against openstack-pkg-tools >= 21~ to fix sysv-rc script.

    2014-12-15 - Thomas Goirand <zigo@debian.org> keystone (2014.1.3-4) unstable; urgency=medium * Manually activates keystone.service since we're not using #DEBHELPER#. * Now requires version >= 20~ of openstack-pkg-tools to build (Closes: #770706). * Added missing debian/keystone.cron.hourly to flush the token table periodically, otherwise the table can grow up to gigabytes and Keystone becomes unusable. * Removed python-bashate build-depends. * Only run pkgos_dbc_postinst if asked by user. * Do not run 'tests\.(?!.*KcMaster.*)' unit tests which are failing because they are adapted for a newer version of keystoneclient with oslo.serialization which isn't in Jessie.

    2014-10-05 - Thomas Goirand <zigo@debian.org> keystone (2014.1.3-2) unstable; urgency=medium * Mangling upstream rc and beta versions in watch file. * Updated nl.po thanks to Frans Spiesschaert (Closes: #764205). * Using templated init, upstart and systemd scripts from openstack-pkg-tools >= 13. * Removed all debian/*.logrotate, using only one in the -common package. * Standards-Version is now 3.9.6 (no change).

    2014-10-03 - Thomas Goirand <zigo@debian.org> keystone (2014.1.3-1) unstable; urgency=medium * New upstream release.

    2014-09-29 - Thomas Goirand <zigo@debian.org> keystone (2014.1.2.1-2) unstable; urgency=medium * Updated pt_BR.po thanks to Adriano Rafael Gomes (Closes: #762471).

    2014-08-09 - Thomas Goirand <zigo@debian.org> keystone (2014.1.2.1-1) unstable; urgency=medium * Corrected new upstream point release (was wrong tag).

    2014-08-08 - Thomas Goirand <zigo@debian.org> keystone (2014.1.2-1) unstable; urgency=medium * New upstream point release. * Removes patches applied upstream: - cve-2014-3476-Block-delegation-escalation-of-privilege.patch - cve-2014-3520-Ensure_that_in_v2_auth_tenant_id_matches_trust.patch * Refresh patches. * Reviewed (build-)depends for this release. * Added PYTHONPATH=. when building doc with sphinx.

    2014-07-03 - Thomas Goirand <zigo@debian.org> keystone (2014.1.1-3) unstable; urgency=high * CVE-2014-3520: Keystone V2 trusts privilege escalation through user supplied. Added upstream patch: cve2014-3520-Ensure_that_in_v2_auth_tenant_id_matches_trust.patch (Closes: #753511).

    2014-06-13 - Thomas Goirand <zigo@debian.org> keystone (2014.1.1-2) unstable; urgency=high * CVE-2014-3476: privilege escalation through trust chained delegation. Applied upstream patch. (Closes: #751454).

    Advertisement
    Advertisement