designate API requires public API url to be in api_base_uri for public cloud consumers to query and manage zones outside of openstack-dashboard
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Designate Charm |
Fix Released
|
Medium
|
James Page |
Bug Description
This is related to the invalid designateclient bug:
https:/
When the charm configures api_base_uri, it sets it to the internal endpoint http(s)
Designate is set up with a binding to a public-space for the public endpoint, and has os-public-hostname set to that fqdn, however, when customers connect with OS-INTERFACE=public and hit the bare service, the service provides an href to the internal API url. This seems a bug in the designate-api service, but maybe this is something that can be resolved within the charm?
The workaround is to set use-internal-
This environment is xenial-queens and running with ssl-enabled services on 18.11 charms.
Changed in charm-designate: | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → James Page (james-page) |
milestone: | none → 19.04 |
Changed in charm-designate: | |
status: | Fix Committed → Fix Released |
setting "enable- host-header= true" in the charm config has resolved this issue.
If Designate is running multi-node and has relation to hacluster and use-internal- endpoints= true, enable- host-header= true should be a default override to solve for public designate service access.