Expired Keystone tokens should be cleaned up regularly
Bug #1274756 reported by
Dmitry Borodaenko
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Fuel for OpenStack |
Fix Released
|
High
|
Meg McRoberts |
Bug Description
Fuel documentation should include instructions on how to clean up expired Keystone tokens, with an explanation that failing to do such clean up regularly would lead to rapid degradation of OpenStack performance.
One option is to use keystone-manage token-flush command:
https:/
In larger high-load environments it would be safer to script an archival solution based on pt-archiver so that Keystone database doesn't get blocked for a significant amount of time while the rows with expired tokens are being deleted:
http://
Changed in fuel: | |
status: | New → Confirmed |
Changed in fuel: | |
assignee: | nobody → Fuel Library Team (fuel-library) |
Changed in fuel: | |
status: | Confirmed → Triaged |
tags: | removed: docs |
tags: | added: backports-4.1.1 |
Changed in fuel: | |
status: | In Progress → Triaged |
Changed in fuel: | |
milestone: | 5.0 → 5.1 |
tags: |
added: docs removed: backports-4.1.1 |
Changed in fuel: | |
milestone: | 5.1 → 5.0 |
Changed in fuel: | |
milestone: | 5.0 → 5.1 |
Changed in fuel: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Please consider the following change (memcached as backend for tokens) as well /bugs.launchpad .net/fuel/ +bug/1269819
https:/