OpenStack Compute (nova)

placement: Version discovery URI should not require authentication

Bug #1733630 reported by Eric Fried on 2017-11-21

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Compute (nova)	Fix Released	Undecided	hongbin

Bug Description

The placement API GET / returns the version document:

<Response [200]>
{
   "versions": [
     {
       "min_version": "1.0",
       "max_version": "1.10",
       "id": "v1.0"
     }
   ]
}

However, it requires authentication:

# curl http://9.1.2.3/placement/
{"error": {"message": "The request you have made requires authentication.", "code": 401, "title": "Unauthorized"}}

It shouldn't. Right now I can't find the doc that says so, but Monty confirms:

http://eavesdrop.openstack.org/irclogs/%23openstack-nova/%23openstack-nova.2017-11-21.log.html#t2017-11-21T15:35:08

Tags:

Eric Fried (efried) on 2017-11-21

tags:

added: placement
removed: pla

Revision history for this message

Eric Fried (efried) wrote on 2017-11-21:

Here's that doc reference:

https://review.openstack.org/#/c/459710/17/guidelines/discoverability.rst@90

hongbin (hongbin034) on 2017-11-21

Changed in nova:
assignee:	nobody → hongbin (hongbin034)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-11-21: Fix proposed to nova (master)

Fix proposed to branch: master
Review: https://review.openstack.org/522002

Changed in nova:
status:	New → In Progress

OpenStack Infra (hudson-openstack) on 2017-12-11

Changed in nova:
assignee:	hongbin (hongbin034) → Chris Dent (cdent)

Eric Fried (efried) on 2017-12-12

Changed in nova:
assignee:	Chris Dent (cdent) → hongbin (hongbin034)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-12-27: Fix merged to nova (master)

Reviewed: https://review.openstack.org/522002
Committed: https://git.openstack.org/cgit/openstack/nova/commit/?id=c4c1770475b4b0cbd57bc56677eeca1326973f76
Submitter: Zuul
Branch: master

commit c4c1770475b4b0cbd57bc56677eeca1326973f76
Author: Hongbin Lu <email address hidden>
Date: Tue Nov 21 20:05:21 2017 +0000

placement: skip authentication on root URI

The placement API GET / is for version discovery. Skip authentication
on this URL.

The change to test_deploy is required to make it request a URL that
requires authentication. It had been using /.

Change-Id: I5ed1f7a607620c43671e90eaf8a1f6285f1d15e4
Closes-Bug: #1733630

Changed in nova:
status:	In Progress → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2018-01-26: Fix included in openstack/nova 17.0.0.0b3

This issue was fixed in the openstack/nova 17.0.0.0b3 development milestone.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.