X-Auth-Sudo-Tenant-ID header not work for create subdomains
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Designate |
Won't Fix
|
High
|
stanzgy |
Bug Description
When we want to use X-Auth-
(admin) $ keystone tenant-list
+------
| id | name | enabled |
+------
| a5001da641e9404
| 7585151c6106497
| 628a5e7bb9f6433
| e0713ea41012428
+------
$ curl -g -X POST http://
OK
$ curl -g -X POST http://
{"message": "Unable to create subdomain in another tenants domain", "code": 403, "type": "forbidden", "request_id": "req-fb8d7250-
FAILED
$ designate domain-list
+------
| id | name | serial |
+------
| 63a09bfc-
| fd3aff65-
+------
summary: |
- X-Auth-Sudo-Tenant-ID header not work for subdomains + X-Auth-Sudo-Tenant-ID header not work for create subdomains |
Changed in designate: | |
milestone: | none → liberty-1 |
importance: | Undecided → High |
Changed in designate: | |
milestone: | liberty-1 → liberty-2 |
Changed in designate: | |
milestone: | liberty-2 → liberty-3 |
Changed in designate: | |
milestone: | liberty-3 → liberty-rc1 |
Changed in designate: | |
milestone: | liberty-rc1 → none |
What does your policy.json file look like? and what tenants were the above requests make with?
seems to work fine for me:
➜ designate git:(master) ✗ http 127.0.0. 1:9001/ v2/zones name=subdomain. test-dup- 8.com. email=g@g.com X-Auth- Project- ID:random X-Auth-User-ID:user X-Auth- Sudo-Tenant- ID:noauth- project -v Encoding: gzip, deflate, compress Project- ID: random Sudo-Tenant- ID: noauth-project
POST /v2/zones HTTP/1.1
Accept: application/json
Accept-
Content-Length: 57
Content-Type: application/json; charset=utf-8
Host: 127.0.0.1:9001
User-Agent: HTTPie/0.8.0
X-Auth-
X-Auth-
X-Auth-User-ID: user
{ test-dup- 8.com."
"email": "g@g.com",
"name": "subdomain.
}
HTTP/1.1 202 Accepted 127.0.0. 1:9001/ v2/zones/ 7ef05ee8- b9f3-46d3- ba66-751561bfb1 ff -Request- Id: req-71eac3ec- 005d-4703- 95fd-f458d07115 0d
Content-Length: 509
Content-Type: application/json; charset=UTF-8
Date: Thu, 28 May 2015 15:40:58 GMT
Location: http://
X-Openstack
{
"created_ at": "2015-05- 28T15:40: 58.000000" ,
"description" : null, b9f3-46d3- ba66-751561bfb1 ff", 127.0.0. 1:9001/ v2/zones/ 7ef05ee8- b9f3-46d3- ba66-751561bfb1 ff" test-dup- 8.com." , d751-44fe- b57f-8894c9f5c8 42",
"project_ id": "noauth-project",
"transferred_ at": null,
"updated_ at": null,
"action": "CREATE",
"email": "g@g.com",
"id": "7ef05ee8-
"links": {
"self": "http://
},
"masters": [],
"name": "subdomain.
"pool_id": "794ccc2c-
"serial": 1432827658,
"status": "PENDING",
"ttl": 3600,
"type": "PRIMARY",
"version": 1
}