OpenStack Identity (keystone)

Discovery fails for V3 when admin not exposed

Bug #1490690 reported by Adam Young on 2015-08-31

This bug report is a duplicate of: Bug #1381961: Keystone API GET 5000/v3 returns wrong endpoint URL in response body. Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Triaged	Low	Unassigned

Bug Description

V3 is not specifically tied to either public or admin in the specs, but practically speaking, it is tied to admin;

When attempting to use the V3 api and the admin port is not exposed, the following happens:

$ echo $OS_AUTH_URL
https://hostname/v3

$ openstack server list
ERROR: openstack Unable to establish connection to https://hostname:35357/v3/auth/tokens

Running on debug shows more information:
RESP BODY: {"version": {"status": "stable", "updated": "2013-03-06T00:00:00Z", "media-types": [{"base": "application/json", "type": "application/vnd.openstack.identity-v3+json"}, {"base": "application/xml", "type": "application/vnd.openstack.identity-v3+xml"}], "id": "v3.0", "links": [{"href": "https://keystone-admin.dream.io:35357/v3/", "rel": "self"}]}}

It is the link in that response being used for discovery. That should be the public URL, not the admin.

See original description

Lance Bragstad (lbragstad) on 2015-09-02

description:

updated

Revision history for this message

Lance Bragstad (lbragstad) wrote on 2015-09-02:

This sounds really similar to bug 1381961. There is a patch up for review - https://review.openstack.org/#/c/208168/

Lance Bragstad (lbragstad) on 2015-09-02

Changed in keystone:
status:	New → Triaged
importance:	Undecided → Low

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #1381961 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.