keystone.token.providers.fernet.core module¶
- class keystone.token.providers.fernet.core.Provider(*args, **kwargs)[source]¶
Bases:
keystone.token.providers.base.Provider
- generate_id_and_issued_at(token)[source]¶
Generate a token based on the information provided.
- Parameters
token (keystone.models.token.TokenModel) – A token object containing information about the authorization context of the request.
- Returns
tuple containing an ID for the token and the issued at time of the token (token_id, issued_at).
- validate_token(token_id)[source]¶
Validate a given token by its ID and return the token_data.
- Parameters
token_id (str) – the unique ID of the token
- Returns
token data as a tuple in the form of:
- (user_id, methods, audit_ids, system, domain_id, project_id,
trust_id, federated_group_ids, identity_provider_id, protocol_id, access_token_id, app_cred_id, issued_at, expires_at)
user_id
is the unique ID of the user as a stringmethods
a list of authentication methods used to obtain the tokenaudit_ids
a list of audit IDs for the tokensystem
a dictionary containing system scope if system-scopeddomain_id
the unique ID of the domain if domain-scopedproject_id
the unique ID of the project if project-scopedtrust_id
the unique identifier of the trust if trust-scopedfederated_group_ids
list of federated group IDsidentity_provider_id
unique ID of the user’s identity providerprotocol_id
unique ID of the protocol used to obtain the tokenaccess_token_id
the unique ID of the access_token for OAuth1 tokensapp_cred_id
the unique ID of the application credentialparam thumbprint
thumbprint of the certificate for OAuth2.0 mTLSissued_at
a datetime object of when the token was mintedexpires_at
a datetime object of when the token expires- Raises
keystone.exception.TokenNotFound – If the token doesn’t exist.