Fuel for OpenStack

keystone-v3-cannot-create-idp-remote-id

Bug #1546097 reported by Robert Duncan
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Fuel for OpenStack
Invalid
Low
MOS Keystone
Fuel for OpenStack 7.0-updates

Bug Description

Fuel 7.0 kilo on Ubuntu.

Using the openstack common client and identity v3 I cannot create a remote identity provider such as SAML or openid.

syntax:

Identity v3

Requires: OS-FEDERATION extension

identity provider create
Create new identity provider

os identity provider create
    [--remote-id <remote-id> [...] | --remote-id-file <file-name>]
    [--description <description>]
    [--enable | --disable]
    <name>
--remote-id <remote-id>
Remote IDs to associate with the Identity Provider (repeat to provide multiple values)

--remote-id-file <file-name>
Name of a file that contains many remote IDs to associate with the identity provider, one per line

--description
New identity provider description

--enable
Enable the identity provider (default)

--disable
Disable the identity provider

<name>
New identity provider name (must be unique)

Result:

openstack identity provider create --remote-id https://test.com/idp/shibboleth --description test --enable test-identity-provider
usage: openstack identity provider create [-h]
                                          [-f {html,json,shell,table,value,yaml}]
                                          [-c COLUMN] [--max-width <integer>]
                                          [--prefix PREFIX]
                                          [--description <description>]
                                          [--enable | --disable]
                                          <name>
openstack identity provider create: error: unrecognized arguments: --remote-id test-identity-provider.

command does not recognize --remote-id argument.

OpenStack client package details

apt-cache show python-openstackclient
Package: python-openstackclient
Version: 1.0.3-1~u14.04+mos577
Architecture: all
Maintainer: Mirantis OpenStack Team <email address hidden>
Installed-Size: 1271
Depends: python-pkg-resources, python-pbr (>= 0.10), python-six (>= 1.9.0), python-babel (>= 1.3), python-cliff (>= 1.10.0), cliff-tablib (>= 1.0), python-oslo.i18n (>= 1.5.0), python-oslo.utils (>= 1.4.0), python-oslo.serialization (>= 1.4.0), python-glanceclient (>= 1:0.15.0), python-keystoneclient (>= 1:1.1.0), python-novaclient (>= 1:2.22.0), python-cinderclient (>= 1:1.1.0), python-neutronclient (>= 1:2.3.11), python-requests (>= 2.2.0), python-stevedore (>= 1.3.0), python (>= 2.7), python (<< 2.8), python:any (>= 2.7.1-0ubuntu2)
Homepage: https://launchpad.net/python-openstackclient
Priority: extra
Section: python
Filename: pool/main/p/python-openstackclient/python-openstackclient_1.0.3-1~u14.04+mos577_all.deb
Size: 104794
SHA256: e12815f75705963eefa0fb6a99b20e5d4028ada645f3660d3f65256ed2778fd7
SHA1: 926f6b3dcb7618e9198ac5291ea3e19011f78962
MD5sum: 61115efecb327f5044705ab4d9a8346b
Description: Client library for OpenStack API
 This is a client for the OpenStack API. There's a Python API
 (the ``openstackclient`` module), and a command-line script (``openstack``).
Description-md5: 0eddbdd3ae688ad1b4f6780499f28d9a

Package: python-openstackclient
Priority: optional
Section: universe/python
Installed-Size: 931
Maintainer: Ubuntu Developers <email address hidden>
Original-Maintainer: PKG OpenStack <email address hidden>
Architecture: all
Version: 0.3.0-1ubuntu1
Depends: python-cinderclient (>= 1:1.0.6), python-cliff (>= 1.4.3), python-crypto (>= 2.6.0), python-glanceclient (>= 1:0.9.0), python-keyring (>= 1.6.1), python-keystoneclient (>= 1:0.4.1), python-novaclient (>= 1:2.15.0), python-requests (>= 1.1), python-six (>= 1.4.1), python (>= 2.7), python (<< 2.8), python:any (>= 2.7.1-0ubuntu2), python-pbr
Filename: pool/universe/p/python-openstackclient/python-openstackclient_0.3.0-1ubuntu1_all.deb
Size: 81058
MD5sum: fc9498203320a649d0ee2fbcf6e48e5d
SHA1: 10665c8774f1377472fe080abafdc1afa7e9bcfc
SHA256: ca4f196d93c4365d6672617fad00d6c3b814ebe716e8dff6a44ad06aebcf79b1
Description-en: OpenStack Command-line Client
 python-openstackclient is a unified command-line client for the OpenStack APIs.
 It is a thin wrapper to the stock python-*client modules that implement the
 actual REST API client actions.
 .
 This is an implementation of the design goals shown in
 http://wiki.openstack.org/UnifiedCLI. The primary goal is to provide
 a unified shell command structure and a common language to describe
 operations in OpenStack.
Description-md5: 18183f18c3423a12c86fb1ecccee5857
Homepage: http://wiki.openstack.org/OpenStackClient
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Origin: Ubuntu

Maciej Relewicz (rlu)
tags: added: area-mos
Krzysztof Szukiełojć (kszukielojc)
Changed in fuel:
milestone: none → 7.0-updates
importance: Undecided → Low
assignee: nobody → Fuel Python Team (fuel-python)
Revision history for this message
Dmitry Klenov (dklenov) wrote :

Looks like keystone-related issue. Reassigning to keystone team.

Changed in fuel:
assignee: Fuel Python Team (fuel-python) → MOS Keystone (mos-keystone)
status: New → Confirmed
Revision history for this message
Boris Bobrov (bbobrov) wrote :

Well duh, openstackclient in 7.0 is too old for this. As far as I know, --remote-id appeared only in Liberty/8.0.

Changed in fuel:
status: Confirmed → Invalid
Revision history for this message
Robert Duncan (rduncan-t) wrote :

well duh, we have to wait until 2016 to use keystone features considered stable in 2014. Nice to know.

Revision history for this message
Boris Bobrov (bbobrov) wrote :

--remote-id was added only in kilo, in April 2015. Unfortunately, due to how things worked back then, we have not completely migrated from `keystone` cli utility to `openstack` in 7.0 and this resulted in a little older utility than needed.

Anyway, this is done and it's unlikely we shall add minor functionality to 7.0. If you want to use that parameter for one-time config, you could install a newer python-openstackclient to a virtualenv and use it from there. Do this from a controller:

virtualenv env
./env/bin/pip install python-openstackclient
./env/bin/openstack <... --remote-id ...>

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.