provide stable mechanism to retrieve admin credentials
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Keystone Charm |
Triaged
|
Low
|
Unassigned | ||
| keystone (Juju Charms Collection) |
Invalid
|
Low
|
Unassigned | ||
Bug Description
We were relying on a method like this to retrieve the keystone password:
keystone_
export OS_PASSWORD=$(juju ssh keystone/0 "sudo cat /var/lib/
It looks like the behaviour of the keystone charm changed - /var/lib/
We are running keystone in non-HA mode.
Charm source: lp:charms/trusty/keystone
Version: revno 123
The charm config explicitly suggests against setting the password via config except for testing. Also, the config setting is only respected if it's present before install autogenerates credentials.
We need a stable mechanism to extract keystone credentials (aka admin .novarc) to the controlling juju environment.
| Alexander List (alexlist) wrote | #1 |
| James Page (james-page) wrote | #2 |
| Changed in keystone (Juju Charms Collection): | |
| status: | New → Triaged |
| importance: | Undecided → Low |
| Changed in charm-keystone: | |
| importance: | Undecided → Low |
| status: | New → Triaged |
| Changed in keystone (Juju Charms Collection): | |
| status: | Triaged → Invalid |
| Xav Paice (xavpaice) wrote | #3 |
A workaround is to actively set the admin-password via juju-set. This also works post-deploy, contrary to earlier behaviour of the charm.