retrofit-image action uses public endpoint for glance
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
charm-octavia-diskimage-retrofit |
Fix Released
|
High
|
Frode Nordahl |
Bug Description
I have an environment where octavia-
The retrofit-image action seems to use the admin endpoint for keystone and the default endpoint for glance, which ends up being the public endpoint.
Looking at the code it is non-obvious to me how to tell keystone that we want internal endpoints.
I managed to override it with a manual lookup but this feels like a kludge (even if it were corrected to use a config variable instead of hard-coded).
What follows is my rudimentary patch that gets me moving forward. There's got to be a better way to do this.
$ diff -u lib/charm/
--- lib/charm/
+++ lib/charm/
@@ -88,7 +88,8 @@
"""
session = glance_
- glance = glance_
+ glance_internal = session.
+ glance = glance_
$ diff -u lib/charm/
--- lib/charm/
+++ lib/charm/
@@ -47,7 +47,7 @@
return session
-def get_glance_
+def get_glance_
"""Get Glance Client from Keystone Session.
:param session: Keystone Session object
@@ -55,7 +55,7 @@
:returns: Glance Client
:rtype: glanceclient.Client
"""
- return glanceclient.
+ return glanceclient.
def get_product_
Changed in charm-octavia-diskimage-retrofit: | |
status: | New → In Progress |
Changed in charm-octavia-diskimage-retrofit: | |
importance: | Undecided → High |
assignee: | nobody → Frode Nordahl (fnordahl) |
Changed in charm-octavia-diskimage-retrofit: | |
milestone: | none → 20.10 |
Changed in charm-octavia-diskimage-retrofit: | |
status: | Fix Committed → Fix Released |
fwiw, use-internal- endpoint option is explicitly disabled atm. /api.jujucharms .com/charmstore /v5/octavia- diskimage- retrofit- 13/archive/ layer.yaml endpoints"
https:/
> "config":
> "deletes":
> - "ssl_ca"
> - "ssl_cert"
> - "ssl_key"
> - "use-internal-
> - "use-syslog"
> - "verbose"
It needs to be added back and some login needs to be implemented altogether I guess.