updating keystone preferred-api-version from v2 to v3 does not update credentials properly
Bug #1825866 reported by
Andrea Ieri
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
charm-openstack-service-checks |
Fix Released
|
Medium
|
Unassigned |
Bug Description
I'm filing this mostly as a reference, as this is probably too niche for anyone to care.
How to reproduce:
* deploy keystone using the v2 api
* deploy openstack-
* update keystone to use the v3 api
Result: the auth_url passed within the relation still contains v2
https:/
Deploying openstack-
This has been tested on openstack-
Related branches
~aluria/charm-openstack-service-checks/+git/charm-openstack-service-checks:bug/1825951
Merged
into
~canonical-bootstack/charm-openstack-service-checks:master
at
revision ec7a85429bdbf705811060b10412cc767d9a1852
- Peter Sabaini (community): Approve
-
Diff: 17 lines (+7/-0)1 file modifiedreactive/openstack_service_checks.py (+7/-0)
information type: | Public → Private |
tags: | added: canonical-bootstack |
information type: | Private → Public |
Changed in charm-openstack-service-checks: | |
status: | Triaged → Fix Released |
To post a comment you must log in.
Issue is that the keystone credentials are requested as soon as the "identity- credentials. available" relation is available, and data is stored in unitdata sqlite db ("keystonecreds" key).
"allow_ keystone_ store_overwrite " reactive function exists, but it is only called when "identity- credentials" is gone.
We need to investigate how to track identity- credentials- relation- changed hook. May be charm-interface -keystone- credentials code should track changes so we can monitor an extra state "identity- credentials. available. updated" or something similar): /github. com/openstack/ charm-interface -keystone- credentials/ blob/master/ requires. py#L41, L61
https:/