ec2 token authentication can't verify an SSL cert
Bug #1415223 reported by
Steve McLellan
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Heat |
Fix Released
|
Medium
|
Anant Patil | ||
keystonemiddleware |
Invalid
|
Undecided
|
Unassigned |
Bug Description
With keystone is deployed behind SSL, the ec2_authtoken options don't have include the same SSL options that the various clients use so it's not possible to authenticate tokens - the authentication request is:
requests.
If keystone_ec2_uri is an HTTPS endpoint that requires a CA cert for validation, the request fails, and the instance trying to retrieve metadata via heat-cfn-api will never manage to do so.
Changed in heat: | |
assignee: | nobody → Anant Patil (ananta) |
Changed in heat: | |
importance: | Undecided → Medium |
milestone: | none → kilo-rc1 |
Changed in heat: | |
status: | Fix Committed → Fix Released |
Changed in heat: | |
milestone: | kilo-rc1 → 2015.1.0 |
Changed in keystonemiddleware: | |
status: | Incomplete → Won't Fix |
status: | Won't Fix → Invalid |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/151222
Review: https:/