Juju Charms Collection
swift-proxy package

Charms need config option to set public endpoint address

Bug #1398182 reported by Billy Olsen on 2014-12-01

This bug affects 4 people

	Status	Importance	Assigned to	Milestone
Charm Helpers	Fix Released	Medium	Billy Olsen
ceilometer (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
ceph-radosgw (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
cinder (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
glance (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
heat (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
keystone (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
neutron-api (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
nova-cloud-controller (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07
swift-proxy (Juju Charms Collection)	Fix Released	High	Billy Olsen	Juju Charms Collection 15.07

Bug Description

Charms determine the public URL based upon the public IP addresses that are available on the os-public-network. In some installations, the public IP is not available on the node itself, but is instead provided by a reverse proxy elsewhere. In these instances, an option should be made available to allow the publicURL to be specified so that the endpoints registered within keystone refer to the public URL specified.

For example, if my swift service is provided externally through https://files.example.com but the files.example.com host does not reside on the swift-proxy unit there is no way via the charm to advertise the publicURL in a publicly consumable manner.

See original description

Tags:

Related branches

lp:~billy-olsen/charms/trusty/ceilometer/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/ceilometer/next at revision 85

OpenStack Charmers: Pending requested 2015-06-03

lp:~billy-olsen/charms/trusty/ceph-radosgw/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/ceph-radosgw/next at revision 39

Corey Bryant (community): Approve on 2015-06-10

lp:~billy-olsen/charm-helpers/better-address-endpoint-overrides

Merged into lp:charm-helpers at revision 383

Jorge Niedbalski (community): Approve on 2015-06-04

Felipe Reyes: Pending requested 2015-06-03

charmers: Pending requested 2015-06-03

Edward Hope-Morley: Pending requested 2015-06-03

lp:~billy-olsen/charms/trusty/swift-proxy/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/swift-proxy/next at revision 98

Corey Bryant (community): Approve on 2015-06-12

lp:~billy-olsen/charms/trusty/nova-cloud-controller/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/nova-cloud-controller/next at revision 165

Corey Bryant (community): Approve on 2015-06-10

lp:~billy-olsen/charms/trusty/neutron-api/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/neutron-api/next at revision 118

Corey Bryant (community): Approve on 2015-06-10

lp:~billy-olsen/charms/trusty/keystone/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/keystone/next at revision 154

Corey Bryant (community): Approve on 2015-06-10

lp:~billy-olsen/charms/trusty/glance/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/glance/next at revision 119

Corey Bryant (community): Approve on 2015-06-10

lp:~billy-olsen/charms/trusty/cinder/public-endpoint-host

Merged into lp:~openstack-charmers-archive/charms/trusty/cinder/next at revision 97

Corey Bryant (community): Approve on 2015-06-10

lp:~openstack-charmers-archive/charms/trusty/glance/next

lp:~openstack-charmers-archive/charms/trusty/nova-cloud-controller/next

lp:~openstack-charmers-archive/charms/trusty/neutron-api/next

lp:~openstack-charmers-archive/charms/trusty/ceph-radosgw/next

lp:~openstack-charmers-archive/charms/trusty/keystone/next

lp:~openstack-charmers-archive/charms/trusty/cinder/next

lp:~openstack-charmers-archive/charms/trusty/ceilometer/next

lp:~openstack-charmers-archive/charms/trusty/heat/next

lp:~openstack-charmers-archive/charms/trusty/swift-proxy/next

Billy Olsen (billy-olsen) on 2014-12-01

tags:

added: cts openstack

Billy Olsen (billy-olsen) on 2014-12-11

tags:

added: canonical-bootstack

Revision history for this message

Peter Sabaini (peter-sabaini) wrote on 2014-12-12:

One additional point re: motivation -- for a public service, you'd also want the SSL certs be issued by a ext. CA. Issuing certs for IP addresses is cumbersome and hard to maintain; ususally we try to stick to our wildcard *.c.c cert for economy

Billy Olsen (billy-olsen) on 2015-01-20

Changed in swift-proxy (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
status:	New → In Progress

Revision history for this message

Ante Karamatić (ivoks) wrote on 2015-05-18:

Allowing publicURL to be configured is something that would be benefitial for all charms that create endpoints. Most of the time deployment only has private IPs, but people do NAT/proxy to those IPs. Problem is then with keystone who serves private IPs as endpoints.

Ante Karamatić (ivoks) on 2015-05-18

tags:	added: cpec
Changed in swift-proxy (Juju Charms Collection):
importance:	Undecided → High
no longer affects:	nova-cloud-controller (Ubuntu)

Ante Karamatić (ivoks) on 2015-05-18

summary:	- Cannot set publicURL for public access + Charms need to config option for publicURL
summary:	- Charms need to config option for publicURL + Charms need config option to set publicURL

JuanJo Ciarlante (jjo) on 2015-05-18

Changed in openstack-dashboard (Juju Charms Collection):
status:	New → Invalid
no longer affects:	openstack-dashboard (Juju Charms Collection)

Revision history for this message

JuanJo Ciarlante (jjo) wrote on 2015-05-18: Re: Charms need config option to set publicURL

+1 we need this added to every relevant OS charm with a service
(in keystone catalog).

As a suggestion, please consider adding some minimal auto-templating, like
#1 public_url: https://{{service_name}}.os.example.com:{{service_port}}/{{service_path}}
or
#2 public_url: https://{{service_type}}.os.example.com:{{service_port}}/{{service_path}}

which would expand to e.g.
#1:
- https://keystone.os.example.com:5000/v2.0
- https://swift-proxy.os.example.com:8080/v1/AUTH_xxx
- https://nova-cloud-controller.os.example.com:8774/v2/yyy
#2:
- https://identity.os.example.com:5000/v2.0
- https://object-store.os.example.com:8080/v1/AUTH_xxx
- https://compute.os.example.com:8774/v2/yyy

FYI above would allow us to set a single 'override:' line at juju-deploy config.

Ante Karamatić (ivoks) on 2015-05-18

Changed in ceilometer (Juju Charms Collection):
importance:	Undecided → High
Changed in ceph-radosgw (Juju Charms Collection):
importance:	Undecided → High
Changed in cinder (Juju Charms Collection):
importance:	Undecided → High
Changed in glance (Juju Charms Collection):
importance:	Undecided → High
Changed in heat (Juju Charms Collection):
importance:	Undecided → High
Changed in keystone (Juju Charms Collection):
importance:	Undecided → High
Changed in neutron-api (Juju Charms Collection):
importance:	Undecided → High
Changed in nova-cloud-controller (Juju Charms Collection):
importance:	Undecided → High
description:	updated

Billy Olsen (billy-olsen) on 2015-06-03

Changed in ceilometer (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in ceph-radosgw (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in cinder (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in glance (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in heat (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in keystone (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in neutron-api (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in nova-cloud-controller (Juju Charms Collection):
assignee:	nobody → Billy Olsen (billy-olsen)
Changed in ceilometer (Juju Charms Collection):
milestone:	none → 15.07
Changed in ceph-radosgw (Juju Charms Collection):
milestone:	none → 15.07
Changed in cinder (Juju Charms Collection):
milestone:	none → 15.07
Changed in glance (Juju Charms Collection):
milestone:	none → 15.07
Changed in heat (Juju Charms Collection):
milestone:	none → 15.07
Changed in keystone (Juju Charms Collection):
milestone:	none → 15.07
Changed in neutron-api (Juju Charms Collection):
milestone:	none → 15.07
Changed in nova-cloud-controller (Juju Charms Collection):
milestone:	none → 15.07
Changed in swift-proxy (Juju Charms Collection):
milestone:	none → 15.07
Changed in ceilometer (Juju Charms Collection):
status:	New → In Progress
Changed in ceph-radosgw (Juju Charms Collection):
status:	New → In Progress
Changed in cinder (Juju Charms Collection):
status:	New → In Progress
Changed in glance (Juju Charms Collection):
status:	New → In Progress
Changed in keystone (Juju Charms Collection):
status:	New → In Progress
Changed in neutron-api (Juju Charms Collection):
status:	New → In Progress
Changed in nova-cloud-controller (Juju Charms Collection):
status:	New → In Progress
Changed in heat (Juju Charms Collection):
status:	New → In Progress

Revision history for this message

Billy Olsen (billy-olsen) wrote on 2015-06-03:

I've provided a merge proposal for various charms which provides an os-public-hostname option allowing for a user to specify what the base hostname portion of the endpoint URLs is. It doesn't allow for a complete re-write of the API endpoint, but it does allow for the primary use cases to be addressed; NAT'ing the private IP and wildcard certificates.

tags:

added: backport-potential

Billy Olsen (billy-olsen) on 2015-06-04

summary:

- Charms need config option to set publicURL
+ Charms need config option to set public endpoint address

Jorge Niedbalski (niedbalski) on 2015-06-04

Changed in charm-helpers:
assignee:	nobody → Billy Olsen (billy-olsen)
importance:	Undecided → Medium
status:	New → Fix Released

Revision history for this message

Corey Bryant (corey.bryant) wrote on 2015-06-10:

Hi Billy, Do you have an mp for heat?

Billy Olsen (billy-olsen) on 2015-06-15

Changed in ceilometer (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in ceph-radosgw (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in cinder (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in glance (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in heat (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in keystone (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in neutron-api (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in nova-cloud-controller (Juju Charms Collection):
status:	In Progress → Fix Committed
Changed in swift-proxy (Juju Charms Collection):
status:	In Progress → Fix Committed

Billy Olsen (billy-olsen) on 2015-06-19

Changed in ceilometer (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in ceph-radosgw (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in cinder (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in glance (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in heat (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in keystone (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in neutron-api (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in nova-cloud-controller (Juju Charms Collection):
status:	Fix Committed → Fix Released
Changed in swift-proxy (Juju Charms Collection):
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Juju Charms Collectionswift-proxy package

Charms need config option to set public endpoint address

Bug Description

Related branches

Other bug subscribers

Remote bug watches

Juju Charms Collection
swift-proxy package