ironic

History

Julia Kreger c2ba869040 Redfish: Consider password part of the session cache Previously, when a password change occured in ironic, the session would not be invalidated, and this, in theory, could lead to all sorts of issues with the old password still being re-used for authentication. In a large environment where credentials for BMCs may not be centralized, this can quickly lead to repeated account lockout experiences for the BMC service account. Anyhow, now we consider it in tracking the sessions, so when the saved password is changed, a new session is established, and the old session is eventually expired out of the cache. Change-Id: I49e1907b89a9096aa043424b205e7bd390ed1a2f	2022-08-25 11:07:54 -07:00
..
notes	Redfish: Consider password part of the session cache	2022-08-25 11:07:54 -07:00
source	Imported Translations from Zanata	2022-07-28 04:33:45 +00:00

Julia Kreger c2ba869040 Redfish: Consider password part of the session cache

Previously, when a password change occured in ironic,
the session would not be invalidated, and this, in theory,
could lead to all sorts of issues with the old password
still being re-used for authentication.

In a large environment where credentials for BMCs may not
be centralized, this can quickly lead to repeated account
lockout experiences for the BMC service account.

Anyhow, now we consider it in tracking the sessions, so
when the saved password is changed, a new session is
established, and the old session is eventually expired out
of the cache.

Change-Id: I49e1907b89a9096aa043424b205e7bd390ed1a2f

2022-08-25 11:07:54 -07:00

notes

Redfish: Consider password part of the session cache

2022-08-25 11:07:54 -07:00

source

Imported Translations from Zanata

2022-07-28 04:33:45 +00:00