Barbican.conf - external_fqdn should be used for host_href
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla-ansible |
Fix Released
|
Medium
|
Nenad Radojevic |
Bug Description
The barbican service should use the external fqdn as value for the host_href parameter. Typically this is the endpoint that clients would use to connect to barbican from outside.
We came to this conclusion during the attempt to list secrets from outside our environment. As we started debugging we found out that a curl on our external fqdn will respond with the internal vip (10.10.30.100) instead of the external one (curl shown further below).
That's why users won't receive an answer from Barbican.
curl -sk https:/
{
"versions": {
"values": [
{
"status": "stable",
"updated": "2015-04-
{
"base": "application/json",
"type": "application/
}
],
"id": "v1",
"links": [
{
"href": "http://
"rel": "self"
},
{
"href": "http://
"type": "text/html",
"rel": "describedby"
}
]
}
]
}
}
Changed in kolla-ansible: | |
assignee: | nobody → Nenad Radojevic (nradojevic) |
description: | updated |
Changed in kolla-ansible: | |
importance: | Undecided → Medium |
milestone: | none → ocata-rc1 |
Fix proposed to branch: master /review. openstack. org/426697
Review: https:/