Registered
by
John Wood
Barbican is a RESTful key manager service service for cloud applications.
Barbican includes a REST API (called Barbican) designed for the secure storage, provisioning and management of secrets. The API can interface with security appliances (such as HSMs).
The OpenStack community maintains several clients to this API:
* openstacksdk - https:/
* OpenStackClient - https:/
*
Barbican is part of OpenStack, and uses middleware to configure Keystone authentication/
Project information
- Licence:
- Apache Licence
View full history Series and milestones
2025.2 series is the current focus of development.
All code Code
- Version control system:
- Git
- Programming languages:
- python
All packages Packages in Distributions
-
barbican source package in Xenial
Version 1:2.0.0-0ubuntu1.1 uploaded -
barbican source package in Stonking
Version 2:22.0.0-0ubuntu1 uploaded -
barbican source package in Resolute
Version 2:22.0.0-0ubuntu1 uploaded -
barbican source package in Questing
Version 2:21.0.0-0ubuntu1 uploaded -
barbican source package in Plucky
Version 2:20.0.0-0ubuntu1 uploaded
All bugs Latest bugs reported
-
Bug #2147221: Bit length validation rejects valid EC key orders (P-521)
Reported -
Bug #2147167: SimpleCryptoPlugin crashes with TypeError on Python 3.14 when kek is unconfigured
Reported -
Bug #2145194: barbican-tempest-plugin does not respect endpoint settings
Reported -
Bug #2143871: is pkcs11_key_generation.py dead code?
Reported -
Bug #2143752: Incorrect exception import in migration script
Reported
All blueprints Latest blueprints
-
Add support for setting the KV engine version for Vault backends
Registered -
Add pre-ping to verify pooled DB connections before use
Registered -
PKCS#11 Mechanism List
Registered -
PKCS#11 Key Type Rotation
Registered -
Add authentication to AES-CBC encryption in PKCS#11 backend
Registered
More contributors Top contributors
- OpenStack Infra 29 points
- Takashi Kajinami 17 points
- Tim Shephard 17 points
- Rajiv Mucheli 13 points
- Myles Penner 9 points
