Keystone Puppet Module Token Failure
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Cisco Openstack |
Fix Released
|
Low
|
Daneyon Hansen | ||
Grizzly |
Fix Released
|
Low
|
Daneyon Hansen |
Bug Description
The Keystone provider and type does not handle token based keystone client authentication properly. As you can see below, the token-get command does not include the --os-username --os-password auth flags. These flags are not needed when using keystone client username/password based authnetication, but are required when SERVICE_TOKEN and SERVICE_ENDPOINT are set in the OS auth file. When SERVICE_TOKEN and SERVICE_ENDPOINT are set in the auth file, the keystone client prefers them (token auth) over username/password authentication.
debug: Puppet:
err: /Stage[
WARNING: Bypassing authentication using a token & endpoint (authentication credentials are being ignored).
keystone --os-tenant-
+------
| Property | Value |
+------
| expires | 2013-08-
| id | 7bf6602da866409
| tenant_id | 9ec0f9e262d54dd
| user_id | b70d506bb4cc4ea
+------
I think this got resolved upstream, didn't it? Perhaps: /review. openstack. org/#/c/ 37415/
https:/