Keystone v3 domain scoped authentication fails
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Juniper Openstack | Status tracked in Trunk | |||||
R3.2 |
Fix Committed
|
High
|
Ignatious Johnson Christopher | |||
Trunk |
Fix Committed
|
High
|
Ignatious Johnson Christopher |
Bug Description
If keystone v3 is enabled we always try to do project scoped authentication.
_user_domain_name is by default set to 'Default' hence the below condtn is always True
https:/
if self._user_
The condtn should be based on Domain name and not user_domain_name since user_domain_name is reqd for both domain scoped and project scoped auth.
BTW, our current provisioning(SM and Fab) doesnt set admin_project_
tags: |
added: config removed: releasenote |
no longer affects: | juniperopenstack/r4.0 |
tags: | added: workday |
Review in progress for https:/ /review. opencontrail. org/34866
Submitter: Ignatious Johnson Christopher (<email address hidden>)