keystone.token.provider module

Token provider interface.

class keystone.token.provider.Manager[source]

Bases: Manager

Default pivot point for the token provider backend.

See keystone.common.manager.Manager for more details on how this dynamically calls the backend.

V3 = 'v3.0'
VERSIONS = frozenset({'v3.0'})
check_revocation(token)[source]
check_revocation_v3(token_values)[source]
driver_namespace = 'keystone.token.provider'
invalidate_individual_token_cache(token)[source]
issue_token(user_id, method_names, expires_at=None, system=None, project_id=None, domain_id=None, auth_context=None, trust_id=None, app_cred_id=None, thumbprint=None, parent_audit_id=None)[source]
revoke_token(token_id, revoke_chain=False)[source]
validate_token(token_id, window_seconds=0, access_rules_support=None)[source]
keystone.token.provider.default_expire_time()[source]

Determine when a fresh token should expire.

Expiration time varies based on configuration (see [token] expiration).

Returns:

a naive UTC datetime.datetime object

keystone.token.provider.random_urlsafe_str()[source]

Generate a random URL-safe string.

Return type:

str