Authorization tokens to include session information
|Assignee:||Ruben S. Montero||% Done:|
|Category:||Core & System|
|Target version:||Release 5.2|
This feature is to extend the current token functionality to:
- Allow users to have more than one active tokens
- Add session information to the token. In this first iteration group could be added, so when the user is authenticated all ownership operations is based on this group, similar to the shell newgrp command.
This feature includes CLI and potentially Sunstone support
feature #4714: Add multiple authentication tokens per user. Tokens are
extended to include an efective gid, used for object creation and
authorization (when using the token).
feature #4714: Check EGID as stored in the token is still a valid group for the user.