Canonical Juju

juju drops ssh keys from maas user

Bug #1669829 reported by Ryan Beisner on 2017-03-03

12

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	Canonical Juju	Triaged	Low	Unassigned
	2.0	Won't Fix	Undecided	Unassigned
	2.1	Won't Fix	Undecided	Unassigned

Bug Description

When deploying machines with Juju (2.1.0) against MAAS (2.1.4), the MAAS user's ssh keys are dropped. This prevents the user from being able to ssh directly into the machine.

When deploying machines with just MAAS, the user's ssh keys survive, and the user can ssh directly into the machine.

Confirmed by looking at the content of /home/ubuntu/.ssh/authorized_keys in the two scenarios above.

Tags:

Revision history for this message

Anastasia (anastasia-macmood) wrote on 2017-03-14:

#1

Putting on the Wishlist, as this is a current behavior and you are requesting a change.

Changed in juju:
status:	New → Triaged
importance:	Undecided → Wishlist
tags:	added: maas maas-provider
tags:	added: improvement

Revision history for this message

Ryan Beisner (1chb1n) wrote on 2017-03-14:

#2

Actually, this is a regression. With Juju 1.25.10 + MAAS 1.9.4, the ssh keys of the MAAS user do survive to exist on the Juju unit.

Changed in juju:
status:	Triaged → New
tags:	added: regression removed: improvement

Anastasia (anastasia-macmood) on 2017-03-17

Changed in juju:
status:	New → Triaged
importance:	Wishlist → Critical
milestone:	none → 2.2-rc1
milestone:	2.2-rc1 → 2.2-beta1

Revision history for this message

Anastasia (anastasia-macmood) wrote on 2017-03-21:

#3

I am re-triaging this since Juju 2.0 and 2.1 exhibit this behavior. It is not a regression for Juju 2 nor for 2.2.

While we decide when and how we address this bug, the workaround would be to add ssh key using 'juju add-ssh-key'

tags:	removed: regression
Changed in juju:
importance:	Critical → High
milestone:	2.2-beta1 → none

Revision history for this message

Anastasia (anastasia-macmood) wrote on 2017-03-21:

#4

Marking this report as Won't Fix for 2.0 and 2.1 series as we are not planning any further releases 2.0x/2.1x releases.

Revision history for this message

John A Meinel (jameinel) wrote on 2017-04-10:

#5

Juju 2.0 has support for directly registering user's ssh keys which it will apply to all machines. (you can add keys, remove them, etc.)
It is possible that we should be looking up a user's set of keys from MAAS at some point, but the set-of-keys that can access the machine are intentionally controlled by Juju. (multi-user, etc means the set of keys that can access a machine could be entirely separate from the set of keys that deployed the machine.)

Ian Booth (wallyworld) on 2020-09-01

tags:

removed: maas

Revision history for this message

Canonical Juju QA Bot (juju-qa-bot) wrote on 2022-11-03:

#6

This bug has not been updated in 2 years, so we're marking it Low importance. If you believe this is incorrect, please update the importance.

Changed in juju:
importance:	High → Low
tags:	added: expirebugs-bot

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.