charm documentation unclear about usage of the ssl_* configuration options
Bug #1841429 reported by
José Pekkarinen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Charm Helpers |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Cinder Charm |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Dashboard Charm |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Glance Charm |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Keystone Charm |
Fix Released
|
Medium
|
Unassigned | ||
OpenStack Neutron API Charm |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Nova Cloud Controller Charm |
Invalid
|
Undecided
|
Unassigned |
Bug Description
As per charm documentation, implementation of tls endpoint for keystone requires to add
a base64 encoded copy of your self-signed certificate. After deploying the charm, following
the documentation, the status message of the charm renders as:
Services not running that should be: apache2
Digging into the unit I see the following:
root@juju-
LS0tLS1CRUdJTiB
...
LS1FTkQgQ0VSVEl
So charm is doing a json dump forgetting that it requires to decode the base64.
Thanks!
José.
Changed in charm-keystone: | |
status: | New → Incomplete |
Changed in charm-nova-cloud-controller: | |
status: | New → Incomplete |
Changed in charm-openstack-dashboard: | |
status: | New → Incomplete |
Changed in charm-neutron-api: | |
status: | New → Incomplete |
Changed in charm-helpers: | |
status: | Incomplete → Invalid |
Changed in charm-cinder: | |
status: | Incomplete → Invalid |
Changed in charm-glance: | |
status: | Incomplete → Invalid |
Changed in charm-neutron-api: | |
status: | Incomplete → Invalid |
Changed in charm-nova-cloud-controller: | |
status: | Incomplete → Invalid |
Changed in charm-openstack-dashboard: | |
status: | Incomplete → Invalid |
summary: |
- charm dumps base64 certificate to apache2 + charm documentation unclear about usage of the ssl_* configuration + options |
Changed in charm-keystone: | |
status: | Incomplete → Triaged |
importance: | Undecided → Medium |
Changed in charm-keystone: | |
milestone: | none → 19.10 |
Changed in charm-keystone: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
What does your ssl_ca, ssl_cert and ssl_key configuration options look like? I would suspect they contain strings that have been base64 encoded twice.