Juju Charms Collection
keystone package

Keystone does not add a default domain id to keystone.conf which breaks v2 clients

Bug #1626889 reported by Liam Young
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
keystone (Juju Charms Collection)
Fix Released
High
Liam Young
Juju Charms Collection 16.10

Bug Description

The keystone charm should set default_domain_id in the keystone.conf to ensure compatability with clients that do not supply domain info.

From http://docs.openstack.org/liberty/config-reference/content/section_keystone.conf.html:

# This references the domain to use for all Identity API v2 requests (which are
# not aware of domains). A domain with this ID will be created for you by
# keystone-manage db_sync in migration 008. The domain referenced by this ID
# cannot be deleted on the v3 API, to prevent accidentally breaking the v2 API.
# There is nothing special about this domain, other than the fact that it must
# exist to order to maintain support for your v2 clients. (string value)
#default_domain_id = default

Liam Young (gnuoy)
Changed in keystone (Juju Charms Collection):
status: New → Confirmed
importance: Undecided → High
assignee: nobody → Liam Young (gnuoy)
milestone: none → 16.10
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to charm-keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/375334

Changed in keystone (Juju Charms Collection):
status: Confirmed → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to charm-keystone (master)

Reviewed: https://review.openstack.org/375334
Committed: https://git.openstack.org/cgit/openstack/charm-keystone/commit/?id=ccf153981f540db5429bcbe1fc9c010cf92f9acd
Submitter: Jenkins
Branch: master

commit ccf153981f540db5429bcbe1fc9c010cf92f9acd
Author: Liam Young <email address hidden>
Date: Fri Sep 23 09:05:46 2016 +0000

    Add default_domain_id for Keystone v3 deploys

    The default_domain_id is used to specify a domain when the client
    hasn't explicitly set one. It defaults to 'default' which is fine
    for liberty and previous because the id of the default domain is,
     oddly, 'default' rather than a uuid. On Mitaka and higher it is
    a uuid so when keystone assumes the default domains id is 'default'
    it fails.

    Change-Id: Iaa5e6a07a229815cf2281858cb68a4e120aa2af3
    Closes-Bug: 1626889

Changed in keystone (Juju Charms Collection):
status: In Progress → Fix Committed
James Page (james-page)
Changed in keystone (Juju Charms Collection):
status: Fix Committed → Fix Released
Revision history for this message
Dhanabalan Balasundaram (dhanabalanb) wrote :

keystone-manage db_sync still not creating a domain by name "default". Is there a solution for that?

Revision history for this message
Dhanabalan Balasundaram (dhanabalanb) wrote :

I have raised https://bugs.launchpad.net/nova/+bug/1634365 with full information

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.