openrc --insecure aliases are broken with venvs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Invalid
|
Undecided
|
Travis Truman | ||
Liberty |
Fix Released
|
Medium
|
Travis Truman | ||
Trunk |
Invalid
|
Undecided
|
Travis Truman |
Bug Description
openrc_insecure: true is broken with some services using venvs, because of the way the openrc is implementing --insecure.
# Convenience Aliases for Self-Signed Certs
alias cinder='cinder --insecure'
However this task does not use the alias,
- name: Add in cinder devices types
shell: |
. {{ ansible_env.HOME }}/openrc
{{ cinder_bin }}/cinder type-create "{{ item.0 }}"
{{ cinder_bin }}/cinder type-key "{{ item.0 }}" set volume_
So when using self signed cert on keystone it will always fail:
ERROR: SSL exception connecting to https:/
Changed in openstack-ansible: | |
assignee: | nobody → Travis Truman (travis-truman) |
I could not find this snipped in the project, could you please provide a link to the same. In the project openstack- ansible- os_cinder, /github. com/openstack/ openstack- ansible- os_cinder/ blob/a20041d7da 60eedc225d933c1 0ac572d84da20d0 /tasks/ cinder_ backends. yml#L30
there is a similar code, but it uses the --insecure option which enables keystone to use self signed certs. Please find:
https:/
If it is something else, kindly give the link for the same.