Bug 1826534 - Support 'openstack keypair list --project'
Summary: Support 'openstack keypair list --project'
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: python-openstackclient
Version: 16.1 (Train)
Hardware: Unspecified
OS: Unspecified
low
medium
Target Milestone: ---
: ---
Assignee: Stephen Finucane
QA Contact: nlevinki
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-04-21 22:13 UTC by David Vallee Delisle
Modified: 2024-12-20 19:03 UTC (History)
15 users (show)

Fixed In Version: python-openstackclient-5.5.1-0.20220427021748.53f1efa.el9ost
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2022-09-21 12:09:43 UTC
Target Upstream Version: Wallaby
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
OpenStack gerrit 755073 0 None master: MERGED python-openstackclient: Add support for 'keypairs list --user' parameter (Ifc95e7dd6c00807c80e87e10046ab154d0989014) 2022-06-13 19:35:54 UTC
OpenStack gerrit 755074 0 None master: MERGED python-openstackclient: Add support for 'keypairs list --project' parameter (I26e7d38966304dd67be5da8ed0bb24f87191b82f) 2022-06-13 19:35:59 UTC
Red Hat Issue Tracker OSP-10487 0 None None None 2021-11-18 14:37:04 UTC
Red Hat Product Errata RHEA-2022:6543 0 None None None 2022-09-21 12:10:24 UTC

Description David Vallee Delisle 2020-04-21 22:13:08 UTC 
Description of problem:
There's some situation where it would be easier for the admin user to list and/or delete all keypairs. While we understand that it wasn't implemented because some people might see this as a security issue, I think we should consider the fact that we never see or even store the private key.

Also, the admin user can normally access the database and get the information, forcing them to bypass the CLI, or use this kind of hack [1]

[1] https://orchestration.io/2016/03/14/listing-all-key-pairs-in-openstack/
Comment 6 Stephen Finucane 2020-11-09 15:41:06 UTC 
This has been accepted upstream and should be included in a future 5.5.0/6.0 release.
Comment 16 errata-xmlrpc 2022-09-21 12:09:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Release of components for Red Hat OpenStack Platform 17.0 (Wallaby)), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2022:6543
Note You need to log in before you can comment on or make changes to this bug.