Forbidden errors thrown by many identity v2 endpoints
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
devstack |
Invalid
|
Undecided
|
Unassigned |
Bug Description
After recent changes to DevStack, it appears as though many v2 identity endpoints are throwing 404s. It looks like Tempest gates aren't catching these errors because identity v2 admin tests are being skipped and the non-admin tests aren't exhaustive enough.
Steps to reproduce:
1) Use latest DevStack master code, then ./stack
2) source devstack/openrc admin admin
3) Run a command like "openstack --os-identity-
Expected result:
A list of users or roles should be printed to CLI.
Actual result:
Forbidden exception.
Stacktrace example:
Making authentication request to http://
Resetting dropped connection: 127.0.0.1
http://
run(Namespace(
Instantiating identity client: <class 'openstackclien
Making authentication request to http://
Resetting dropped connection: 127.0.0.1
http://
REQ: curl -g -i -X GET http://
Resetting dropped connection: 127.0.0.1
http://
RESP: [404] Date: Wed, 03 May 2017 01:39:32 GMT Server: Apache/2.4.18 (Ubuntu) Vary: X-Auth-Token Content-Type: application/json Content-Length: 133 x-openstack-
RESP BODY: {"error": {"message": "(http://
Note that using --os-identity-
description: | updated |
The keystone v2 API was deprecated for a long time and is no longer available now. Please update if you still see an issue with devstack.