OK so the challenge here is that the radosgw charm requests the signing cert + ca from keystone to deal with revocation of PKI formatted tokens; these are dropped as of Pike, so that information is never provided from keystone.
OK so the challenge here is that the radosgw charm requests the signing cert + ca from keystone to deal with revocation of PKI formatted tokens; these are dropped as of Pike, so that information is never provided from keystone.