Update requirements to implement secure RBAC

This commit bumps the versions for oslo.policy, oslo.log, and keystonemiddleware. It also adds a dependency on oslo.context so that we can re-use context objects to make authorization decisions in oslo.policy, instead of building authorization information from the request manually, which is error-prone and redundant. The versions bumps for these libraries are necessary to provide better default policies through deprecations and enhanced scope checking. Change-Id: I1bdecf2e762e2b7652a411efd03210ea51575ada
2020-12-01 15:38:47 +00:00 · 2020-12-01 15:38:47 +00:00 · b99761d38f
commit b99761d38f
parent 857e5a19dc
1 changed files with 4 additions and 3 deletions
--- a/requirements.txt
+++ b/requirements.txt
@ -6,14 +6,15 @@ tenacity>=3.2.1  # Apache-2.0
 croniter>=0.3.4 # MIT License
 futurist>=0.11.0  # Apache-2.0
 jsonschema>=3.2.0 # MIT
-keystonemiddleware>=2.2.0,!=4.19.0
+keystonemiddleware>=5.1.0 # Apache-2.0
 gnocchiclient>=3.1.0  # Apache-2.0
 lxml>=2.3
 oslo.db>=4.8.0,!=4.13.1,!=4.13.2,!=4.15.0 # Apache-2.0
 oslo.config>=2.6.0 # Apache-2.0
+oslo.context>=2.22.0 # Apache-2.0
 oslo.i18n>=1.5.0 # Apache-2.0
-oslo.log>=1.2.0 # Apache-2.0
-oslo.policy>=0.5.0 # Apache-2.0
+oslo.log>=4.3.0 # Apache-2.0
+oslo.policy>=3.6.0 # Apache-2.0
 oslo.upgradecheck>=0.1.1 # Apache-2.0
 PasteDeploy>=1.5.0
 pbr>=2.0.0 # Apache-2.0