Service user passwords aren't updated when reconfiguring services
Bug #2045990 reported by
Alex Welsh
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
kolla-ansible | Status tracked in Caracal | |||||
Antelope |
Fix Released
|
Undecided
|
Unassigned | |||
Bobcat |
Fix Released
|
Undecided
|
Unassigned | |||
Caracal |
Fix Released
|
Undecided
|
Alex Welsh | |||
Zed |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
It isn't currently possible to rotate keystone passwords for service users.
Re-deploying or re-configuring services with updated passwords will just ignore the change.
The user creation ansible module that Kolla Ansible uses has an option to update user passwords when they are changed, but it's not used. The default is to only update the password when a user is first created.
The reconfiguration will not fail but it will stop affected services from working properly.
Changed in kolla-ansible: | |
assignee: | nobody → Alex Welsh (alex-welsh) |
To post a comment you must log in.
Fix proposed to branch: master /review. opendev. org/c/openstack /kolla- ansible/ +/903178
Review: https:/