juju-gui

user-admin password no longer found in environments.yaml

Bug #1271341 reported by Jesse Meek
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
juju-gui
Fix Released
High
Francesco Banconi
juju-quickstart
Fix Released
High
Brad Crittenden

Bug Description

admin-secret is now found in ~/.juju/environments/local.jenv not ~/.juju/environments.yaml. The message on the login screen needs to be updated.

Related branches

lp:~bac/juju-quickstart/auth
Juju GUI Hackers: Pending requested
Diff: 501 lines (+224/-35)
7 files modified
quickstart/app.py (+23/-0)
quickstart/manage.py (+20/-5)
quickstart/models/envs.py (+39/-17)
quickstart/tests/cli/test_views.py (+2/-2)
quickstart/tests/models/test_envs.py (+68/-9)
quickstart/tests/test_app.py (+20/-0)
quickstart/tests/test_manage.py (+52/-2)
lp:~frankban/juju-core/env-name-in-context
Juju Engineering: Pending requested
Diff: 375 lines (+118/-37)
12 files modified
doc/charms-in-action.txt (+1/-0)
state/api/params/internal.go (+9/-1)
state/api/uniter/environ.go (+9/-18)
state/api/uniter/environ_test.go (+15/-7)
state/api/uniter/uniter.go (+32/-1)
state/apiserver/uniter/uniter.go (+11/-0)
state/apiserver/uniter/uniter_test.go (+13/-0)
state/environ.go (+5/-0)
state/environ_test.go (+4/-0)
worker/uniter/context.go (+7/-2)
worker/uniter/context_test.go (+7/-2)
worker/uniter/uniter.go (+5/-6)
Revision history for this message
Jeff Pihach (hatch) wrote :

Is this a change in 1.17.1?
What about non-local environments?
Will environments.yaml be deprecated?

The Juju documentation still tells the user to use the environments.yaml file and it works according to the message on 1.17.0

Thanks

Changed in juju-gui:
status: New → Incomplete
Gary Poster (gary)
Changed in juju-quickstart:
status: New → Incomplete
Revision history for this message
Gary Poster (gary) wrote :

For quickstart, this is particularly problematic, I think.

If a value is set in a .jenv file and in environments.yaml, which wins?

Revision history for this message
William Reade (fwereade) wrote :

Making people set their own admin-secret sucks, and we end up with passwords like "nothing". The .jenv is now the expected location of the autogenerated admin-secret, and we should update the docs to point to it.

In general, soon, we do want to be able to drop environments.yaml entirely, and get to the point where you can just do `juju bootstrap --provider hpcloud --template /path/to/config/template`.

Revision history for this message
Francesco Banconi (frankban) wrote :

Quickstart actions:
   - retrieve the username and the admin-secret from the jenv-file (high);
   - make the envs admin-secret field optional.

GUI actions:
   - in the login view, point the user to the jenv file: its path is
     `$JUJU_HOME/environments/{env name}.jenv`, e.g.:
     `~/.juju/environments/local.jenv`.
This can be problematic for two reasons: IIRC
1) we currently have no way to check the juju-core version from the GUI and
2) the API exposes the environment name only to authenticated users.

Changed in juju-gui:
status: Incomplete → Triaged
Changed in juju-quickstart:
status: Incomplete → Triaged
importance: Undecided → High
Revision history for this message
Gary Poster (gary) wrote :

For the GUI, we agreed on the following steps:

0) GUI team will change GUI login text to ask users to look in the jenv
files for admin secrets.

1) GUI team will change Juju Core to add JUJU_ENV_NAME environment
variable for charms, providing the human readable name of the environment.

2) GUI team will change charm to include the environment name in the
configuration file sent to the GUI, if it exists.

3) GUI team will change GUI login text to give exact jenv file to look
in for the admin secret, if the name is available; otherwise it will
fall back to the message from step 0.

User effect:

- Quickstart users continue to have best authentication experience.

- Users of newer Juju + GUI environments are told exactly where to look
for their admin secret (password).

- Users of older Juju environments with newer GUI are at least directed
to the right directory to find the appropriate jenv file with the admin
secret.

I think this bug can be closed on the GUI side once we do step 0. After that, we'll want to tackle the rest ASAP, but the bug itself will be (minimally) addressed by only the step 0 bit.

Brad Crittenden (bac)
Changed in juju-quickstart:
assignee: nobody → Brad Crittenden (bac)
status: Triaged → In Progress
Francesco Banconi (frankban)
Changed in juju-gui:
status: Triaged → Won't Fix
status: Won't Fix → In Progress
importance: Undecided → High
assignee: nobody → Francesco Banconi (frankban)
Gary Poster (gary)
Changed in juju-quickstart:
status: In Progress → Fix Committed
Francesco Banconi (frankban)
Changed in juju-gui:
status: In Progress → Fix Committed
Francesco Banconi (frankban)
Changed in juju-quickstart:
status: Fix Committed → Fix Released
Richard Harding (rharding)
Changed in juju-gui:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.