openstack provider should have config option to ignore invalid certs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Go OpenStack Exchange |
Fix Released
|
Medium
|
John A Meinel | ||
juju-core |
Fix Released
|
Critical
|
John A Meinel |
Bug Description
its very common with private openstack clouds to have invalid certs for the https api endpoints. Juju-core should support a config option on the env to allow for using these clouds.
$ juju status --debug -v
2013-07-17 11:50:09 INFO juju provider.go:117 environs/openstack: opening environment "openstack"
2013-07-17 11:50:09 ERROR juju supercommand.go:234 command failed: failed to GET object provider-state from container juju-2bbd5234ab
caused by: failed executing the request https:/
caused by: Get https:/
error: failed to GET object provider-state from container juju-2bbd5234ab
caused by: failed executing the request https:/
caused by: Get https:/
Related branches
- Juju Engineering: Pending requested
-
Diff: 297 lines (+163/-20)5 files modifiedclient/client.go (+18/-18)
client/local_test.go (+67/-0)
identity/identity.go (+21/-0)
identity/identity_test.go (+54/-0)
identity/legacy.go (+3/-2)
description: | updated |
Changed in juju-core: | |
importance: | Critical → High |
tags: | added: papercut |
tags: | added: cts |
Changed in juju-core: | |
assignee: | Frank Mueller (themue) → John A Meinel (jameinel) |
tags: | added: cts-cloud-review |
Changed in juju-core: | |
milestone: | none → 1.16.0 |
Changed in juju-core: | |
milestone: | 1.16.0 → 1.15.1 |
Changed in juju-core: | |
status: | Fix Committed → Fix Released |
Changed in goose: | |
status: | Fix Committed → Fix Released |
<rogpeppe> you can configure the http stack to always ignore invalid certs, or ignore them for just a single request ent.Transport to &http.Transport {TLSClientConfi g: tls.Config{ InsecureSkipVer ify: true, (maybe more here)}}
<rogpeppe> for the former, you can set http.DefaultCli
<rogpeppe> for the latter, you can create a new http.Client and call Do (or Get or whatever) on that