)]}'
{"/PATCHSET_LEVEL":[{"author":{"_account_id":34860,"name":"Amit Uniyal","email":"auniyal@redhat.com","username":"auniyal"},"change_message_id":"a9d5105d3b33de17af1b857bf4662edd8e4ba483","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":3,"id":"05d855b3_5374de1a","updated":"2026-05-20 07:40:28.000000000","message":"recheck\n\nto get tempest logs\n\nthis might be breaking tempest test https://bugs.launchpad.net/cinder/+bug/2153382","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"},{"author":{"_account_id":14250,"name":"Grzegorz Grasza","email":"xek@redhat.com","username":"xek"},"change_message_id":"6f1c66893da7c1e7e4827f98eaa122035a47c68b","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":3,"id":"00e3c739_5db79867","updated":"2025-12-12 14:33:18.000000000","message":"recheck tox-docs","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"},{"author":{"_account_id":34860,"name":"Amit Uniyal","email":"auniyal@redhat.com","username":"auniyal"},"change_message_id":"9cd5494e3c92d178c2e48baa1feb183322941c3b","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":3,"id":"d6aacbca_e2d78ffb","in_reply_to":"0420e7e5_6438a697","updated":"2026-05-20 07:48:50.000000000","message":"nope zuul not running again","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"},{"author":{"_account_id":34860,"name":"Amit Uniyal","email":"auniyal@redhat.com","username":"auniyal"},"change_message_id":"e2d2e9abe9599582187db702820ce2699345f335","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":3,"id":"0420e7e5_6438a697","in_reply_to":"05d855b3_5374de1a","updated":"2026-05-20 07:42:08.000000000","message":"I am hoping recheck would and  run tempest-full-py3 and concerterd attachemnt tests","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"}],"keystonemiddleware/auth_token/__init__.py":[{"author":{"_account_id":34860,"name":"Amit Uniyal","email":"auniyal@redhat.com","username":"auniyal"},"change_message_id":"b5832123b365ca54de4c5346bf8b2e7e243c7012","unresolved":true,"context_lines":[{"line_number":685,"context_line":"                    \u0027code\u0027: 401,"},{"line_number":686,"context_line":"                    \u0027title\u0027: \u0027Unauthorized\u0027,"},{"line_number":687,"context_line":"                    \u0027message\u0027: message,"},{"line_number":688,"context_line":"                }}"},{"line_number":689,"context_line":"                raise webob.exc.HTTPUnauthorized("},{"line_number":690,"context_line":"                    body\u003djsonutils.dumps(body),"},{"line_number":691,"context_line":"                    headers\u003dself._reject_auth_headers,"}],"source_content_type":"text/x-python","patch_set":3,"id":"f61dd2f9_28a12f97","line":688,"updated":"2026-05-21 06:40:29.000000000","message":"this always was retuen 401 for any service token failure witout distuinguish authentication vs authorization (403 not allowed or invalid permisson) fails.\n\nservice_token_roles_required\u003dTrue, a valid service token lacking required roles should return 403 not 401\n\nbefore return there should be a ceck for this.\n@dwilde@redhat.com @artem.goncharov@gmail.com ^^ do you feel its a valid bug in here\n\nso this particular change is correct but I think without this check it cases this bug - https://bugs.launchpad.net/cinder/+bug/2153382","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"}],"keystonemiddleware/auth_token/_opts.py":[{"author":{"_account_id":34860,"name":"Amit Uniyal","email":"auniyal@redhat.com","username":"auniyal"},"change_message_id":"b5832123b365ca54de4c5346bf8b2e7e243c7012","unresolved":true,"context_lines":[{"line_number":205,"context_line":"                \u0027 tokens and ensures proper service-to-service authentication.\u0027"},{"line_number":206,"context_line":"                \u0027 Setting this to False is NOT RECOMMENDED as it allows any\u0027"},{"line_number":207,"context_line":"                \u0027 valid token to be used as a service token, which can bypass\u0027"},{"line_number":208,"context_line":"                \u0027 access-rule checks and weaken composite-auth protections.\u0027),"},{"line_number":209,"context_line":"    cfg.StrOpt(\u0027service_type\u0027,"},{"line_number":210,"context_line":"               help\u003d\u0027The name or type of the service as it appears in the\u0027"},{"line_number":211,"context_line":"               \u0027 service catalog. This is used to validate tokens that have\u0027"}],"source_content_type":"text/x-python","patch_set":3,"id":"4416cb9e_0245cf45","line":208,"updated":"2026-05-21 06:40:29.000000000","message":"changing this default to True exposes bug at __init__.py:687 where valid tokens lacking service roles get 401 instead of 403.","commit_id":"f76f78c4e743d54a8967f453ec2a7403c6728290"}]}