Hi Colleen, Thanks for the response.
Migrating to fernet was not a problem for my case and I think it is a logical thing to do considering UUID tokens were removed in Rocky. I agree that fixing it in an older release is a more expensive operation than migration to fernet tokens so for my case it did not justify the effort to write a patch. I think this bug could be left open as a "known issue" until somebody needs this for UUID tokens and has time to implement the patch or Queens goes EOL. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1828126 Title: [<= Queens] With token-provider='uuid', roles of dynamically obtained federated groups are not taken into account during token-based authentication (for project-scoped token creation) To manage notifications about this bug go to: https://bugs.launchpad.net/keystone/+bug/1828126/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
