OpenStack Identity (keystone)

Create user with tenantid failed when using ldap driver

Bug #1294532 reported by nethawk on 2014-03-19

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Won't Fix	Medium	Unassigned

Bug Description

When using ldap as identity driver instead of sql, creating user with tenantid failed.
For example,when using this command:keystone user-create --name demo --pass demo --tenant-id XXXXXXXXXXXXXXXXXX, it returns this error: ERROR {'info': 'tenantId: attribute type undefined', 'desc': 'Undefined attribute type'}.

To resolve this bug, we must modify the core.py in the path keystone/common/ldap.

In BaseLdap.create(),there si a statement like this : if k == 'id' or k in self.attribute_ignore: continue
it must be changed to this one:

if k == 'id' or k in self.attribute_ignore or k == 'tenantId':
continue

then the above user-create command can success.

Tags:

Revision history for this message

nethawk (13951798214-f) wrote on 2014-03-19:

By the way,the version of keystone I used is havana

nethawk (13951798214-f) on 2014-03-19

Changed in keystone:
status:	New → In Progress

Dolph Mathews (dolph) on 2014-03-19

Changed in keystone:
importance:	Undecided → Medium

Dolph Mathews (dolph) on 2014-04-04

tags:

added: ldap

Revision history for this message

Steve Martinelli (stevemar) wrote on 2015-11-30:

we will be deprecating support for user and group create/delete/update in mitaka, marking this as won't fix as it is not a security issue and does not align with project plans

Changed in keystone:
status:	In Progress → Won't Fix

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.