sahara: default config file sahara.conf is broken

have u ever saw some error?

sahara.conf.sample-basic is wrong. what options password plugin auth plugin used is:

auth-url: Authentication URL
domain-id: Domain ID to scope to
domain-name: Domain name to scope to
project-id: Project ID to scope to
project-name: Project name to scope to
project-domain-id:
  Domain ID containing project
project-domain-name:
  Domain name containing project
trust-id: Trust ID
user-id: User ID
username: Username
user-domain-id: User’s domain id
user-domain-name:
  User’s domain name
password: User’s password

please check https://docs.openstack.org/developer/keystoneauth/plugin-options.html#v3password

In my deployment (based on newton), auth_type in sahara does not [fully] work. Don't ask me why, but I had to add

admin_user = {{ sahara_keystone_user }}
admin_password= {{ sahara_keystone_password }}
admin_tenant_name = service
identity_uri = {{ admin_protocol }}://{{ kolla_internal_fqdn }}:{{ keystone_admin_port }}

But I still need auth_type=password config present.

Typical LOG ERROR: "Unable to create trust"

ERROR sahara.service.trusts [req-1ade91a3-b619-4460-8147-11388d5da832 bc2b2f262dfe4c4895e67c1b8392166d fb7e5862d6dd48c0b52ea9e05ef2473f - - -] [instance: none, cluster: 5d8e7767-dbfc-4c55-8ed3-75f8c8985a20] Unable to create trust (reason: Expecting to find id or name in user - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error. (HTTP 400) (Request-ID: req-75789475-1bf2-4162-a9e3-ae273ba164d7))

could u provide the keystone related package version? like

$ pip freeze | grep keystone
keystoneauth1==2.18.0
keystonemiddleware==4.14.0
python-keystoneclient==3.10.0

root@control01:~# docker exec -ti sahara_engine bash
(sahara-engine)[sahara@control01 /]$ pip freeze | grep keystone
keystoneauth1==2.12.3
keystonemiddleware==4.9.0
python-keystoneclient==3.5.0
(sahara-engine)[sahara@control01 /]$

I do not know what's wrong in your environment. But could u check [0], in 2.12.3, it load username rather than admin-user.
and in newton branch, other project is using username pattern, which works.

[0] https://github.com/openstack/keystoneauth/blob/2.12.3/keystoneauth1/loading/_plugins/identity/v3.py#L23

Maybe it's related with the ubuntu 16.04? I've tested this in two different environments (both based on Ubuntu 16.04) with the same result.

i do not think so...

mark this as invalid.
please re-open it if this happen again.