Ironic Inspector

Authentication is half-broken

Bug #1427125 reported by Dmitry Tantsur
12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ironic Inspector
Fix Released
Critical
Dmitry Tantsur
Ironic Inspector 1.1.0
Kilo
Fix Released
Critical
Dmitry Tantsur
Ironic Inspector 1.1.0

Bug Description

Testing showed that our authentication is not working properly. It does allow in a mere user, but it prevents Ironic user from accessing the API. http://lists.openstack.org/pipermail/openstack-dev/2015-February/057980.html contains proposed improvements.

Despite introducing a new dependency, needs backport to stable/1.0.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to ironic-discoverd (master)

Fix proposed to branch: master
Review: https://review.openstack.org/160367

Changed in ironic-discoverd:
status: Triaged → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to ironic-discoverd (master)

Reviewed: https://review.openstack.org/160367
Committed: https://git.openstack.org/cgit/stackforge/ironic-discoverd/commit/?id=e7e9e0b6f93453648f8d46d11ac2be277c2fb109
Submitter: Jenkins
Branch: master

commit e7e9e0b6f93453648f8d46d11ac2be277c2fb109
Author: Dmitry Tantsur <email address hidden>
Date: Mon Mar 2 15:53:25 2015 +0100

    Properly implement authentication via keystonemiddleware

    This requires introducing new option 'identity_uri'.

    Change-Id: Ibed9cf163357c7b38f6e9a980900bcc1d9d12804
    Closes-Bug: #1427125

Changed in ironic-discoverd:
status: In Progress → Fix Committed
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to ironic-discoverd (stable/1.0)

Reviewed: https://review.openstack.org/160438
Committed: https://git.openstack.org/cgit/stackforge/ironic-discoverd/commit/?id=fbd8127f360ab42f8b814723330b1a321a22961b
Submitter: Jenkins
Branch: stable/1.0

commit fbd8127f360ab42f8b814723330b1a321a22961b
Author: Dmitry Tantsur <email address hidden>
Date: Mon Mar 2 19:04:13 2015 +0100

    Properly implement authentication via keystonemiddleware

    This requires introducing new option 'identity_uri'.

    (cherry picked from commit e7e9e0b6f93453648f8d46d11ac2be277c2fb109)

    Conflicts:
     README.rst
     ironic_discoverd/main.py
     ironic_discoverd/test/test_main.py
     ironic_discoverd/utils.py

    Closes-Bug: #1427125
    Change-Id: Ibed9cf163357c7b38f6e9a980900bcc1d9d12804

Dmitry Tantsur (divius)
Changed in ironic-inspector:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.