Fuel for OpenStack

Bug #1349408
Comment #5

Comment 5 for bug 1349408

Revision history for this message

Ilya Tyaptin (ityaptin) wrote on 2014-08-11: Re: [OSTF] Ceilometer test to check the alarm failed with ceilometer.alarm.service HTTPUnauthorized: HTTPUnauthorized (HTTP 401) in ceilometer-alarm-evaluator log

Hi! Tests are failed because a authentication token can't been authenticated after 10 minutes after creating.

It is showed in ceilometer-alarm-evaluator logs:
"
2014-07-28T13:08:22.158246+01:00 debug: 2014-07-28 12:08:22.602 19972 DEBUG urllib3.connectionpool [-] "POST /v2.0/tokens HTTP/1.1" 200 3532 _make_request /usr/lib/python2.6/site-packages/urllib3/connectionpool.py:330
2014-07-28T13:08:22.184226+01:00 debug: 2014-07-28 12:08:22.629 19972 DEBUG ceilometerclient.common.http [-] curl -i -X GET -H 'X-Auth-Token: 9c165bb761ab4cc18238f2e12fcbc06f' -H 'Content-Type: application/json' -H 'Accept: application/json' -H 'User-Agent: python-ceilometerclient' http://10.108.1.3:8777/v2/alarms?q.field=enabled&q.op=&q.type=&q.value=True log_curl_request /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:111
2014-07-28T13:08:22.432374+01:00 debug: 2014-07-28 12:08:22.877 19972 DEBUG ceilometerclient.common.http [-]
HTTP/1.0 200 OK
date: Mon, 28 Jul 2014 12:08:22 GMT
content-length: 2
content-type: application/json; charset=UTF-8
server: WSGIServer/0.1 Python/2.6.6

[]
log_http_response /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:121
2014-07-28T13:08:22.433361+01:00 info: 2014-07-28 12:08:22.878 19972 INFO ceilometer.alarm.service [-] initiating evaluation cycle on 0 alarms
2014-07-28T13:18:21.981318+01:00 debug: 2014-07-28 12:18:22.608 19972 DEBUG ceilometerclient.common.http [-] curl -i -X GET -H 'X-Auth-Token: 9c165bb761ab4cc18238f2e12fcbc06f' -H 'Content-Type: application/json' -H 'Accept: application/json' -H 'User-Agent: python-ceilometerclient' http://10.108.1.3:8777/v2/alarms?q.field=enabled&q.op=&q.type=&q.value=True log_curl_request /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:111
2014-07-28T13:18:22.085927+01:00 debug: 2014-07-28 12:18:22.717 19972 DEBUG ceilometerclient.common.http [-]
HTTP/1.0 401 Unauthorized
date: Mon, 28 Jul 2014 12:18:22 GMT
content-length: 23
content-type: text/plain
www-authenticate: Keystone uri='http://10.108.2.3:35357'
server: WSGIServer/0.1 Python/2.6.6

Authentication required
"
2014-07-28T13:08:22.158246+01:00 - create keystone token
2014-07-28T13:08:22.432374+01:00 - first request to ceilometer. Response status - 200 OK
2014-07-28T13:18:22.085927+01:00 - second request to ceilometer. Response status - 401 Unauthorized

All following requests have a response status "401 Unauthorized" too.

This behavior is unusual for keystone, because auth token has 1 hour ttl by default.

May you give access to env with confirmation of this bug to Vadim Rovachev?

Hi! Tests are failed because a authentication token can't been authenticated after 10 minutes after creating.

It is showed in ceilometer-alarm-evaluator logs:
"
2014-07-28T13:08:22.158246+01:00 debug:  2014-07-28 12:08:22.602 19972 DEBUG urllib3.connectionpool [-] "POST /v2.0/tokens HTTP/1.1" 200 3532 _make_request /usr/lib/python2.6/site-packages/urllib3/connectionpool.py:330
2014-07-28T13:08:22.184226+01:00 debug:  2014-07-28 12:08:22.629 19972 DEBUG ceilometerclient.common.http [-] curl -i -X GET -H 'X-Auth-Token: 9c165bb761ab4cc18238f2e12fcbc06f' -H 'Content-Type: application/json' -H 'Accept: application/json' -H 'User-Agent: python-ceilometerclient' http://10.108.1.3:8777/v2/alarms?q.field=enabled&q.op=&q.type=&q.value=True log_curl_request /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:111
2014-07-28T13:08:22.432374+01:00 debug:  2014-07-28 12:08:22.877 19972 DEBUG ceilometerclient.common.http [-]
HTTP/1.0 200 OK
date: Mon, 28 Jul 2014 12:08:22 GMT
content-length: 2
content-type: application/json; charset=UTF-8
server: WSGIServer/0.1 Python/2.6.6

[]
 log_http_response /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:121
2014-07-28T13:08:22.433361+01:00 info:  2014-07-28 12:08:22.878 19972 INFO ceilometer.alarm.service [-] initiating evaluation cycle on 0 alarms
2014-07-28T13:18:21.981318+01:00 debug:  2014-07-28 12:18:22.608 19972 DEBUG ceilometerclient.common.http [-] curl -i -X GET -H 'X-Auth-Token: 9c165bb761ab4cc18238f2e12fcbc06f' -H 'Content-Type: application/json' -H 'Accept: application/json' -H 'User-Agent: python-ceilometerclient' http://10.108.1.3:8777/v2/alarms?q.field=enabled&q.op=&q.type=&q.value=True log_curl_request /usr/lib/python2.6/site-packages/ceilometerclient/common/http.py:111
2014-07-28T13:18:22.085927+01:00 debug:  2014-07-28 12:18:22.717 19972 DEBUG ceilometerclient.common.http [-]
HTTP/1.0 401 Unauthorized
date: Mon, 28 Jul 2014 12:18:22 GMT
content-length: 23
content-type: text/plain
www-authenticate: Keystone uri='http://10.108.2.3:35357'
server: WSGIServer/0.1 Python/2.6.6

All following requests have a response status "401 Unauthorized" too.

This behavior is unusual for keystone, because auth token has 1 hour ttl by default.

May you give access to env with confirmation of this bug to Vadim Rovachev?