Hi Cephers,Recently when I did some tests of rgw functions I found that the swift key of a subuser is kept after removing the subuser. As a result, this subuser-swift_key pair can still pass authentication system and get an auth-token (without any permission though). Moreover,
Hi Cephers,
Recently when I did some tests of RGW functions I found that the swift key of a
subuser is kept after removing the subuser. As a result, this subuser-swift_key
pair can still pass authentication system and get an auth-token (without any
permission though). Moreover, if we create a s
