keystoneauth

Incorrect endpoint URL generated for integer project ID

Bug #1968793 reported by Dylan McCulloch
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
keystoneauth
Fix Released
Undecided
Unassigned

Bug Description

In an environment with integer project IDs it’s possible for keystoneauth to mangle the endpoint url to include a repeated api version and result in 404 errors.
For example, if the endpoint url includes suffix '/v2.1' and the client authenticates with project ID '1' then during discovery keystoneauth mistakenly stores the api version in the _saved_project_id variable and subsequently appends this to the url.
e.g. http://nova.example.com:8774/v2.1/v2.1

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to keystoneauth (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/openstack/keystoneauth/+/837635

Changed in keystoneauth:
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystoneauth (master)

Reviewed: https://review.opendev.org/c/openstack/keystoneauth/+/837635
Committed: https://opendev.org/openstack/keystoneauth/commit/8e27ff5d13daa181103b8f01fd505e3425ef94a3
Submitter: "Zuul (22348)"
Branch: master

commit 8e27ff5d13daa181103b8f01fd505e3425ef94a3
Author: Dylan McCulloch <email address hidden>
Date: Wed Apr 13 09:32:44 2022 +1000

    Fix version discovery check of url for integer project id

    Check if the last url segment matches the project id.
    Previously the check only confirmed whether the last url segment
    endswith the project id which could cause problems with spurious
    matches of some legacy integer project ids.

    Closes-Bug: 1968793
    Change-Id: I7c6c22e41bde2a73508635b7e964c58a02c12146

Changed in keystoneauth:
status: In Progress → Fix Released
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/keystoneauth 4.6.0

This issue was fixed in the openstack/keystoneauth 4.6.0 release.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.