keystone default deploy test uses http not https
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Invalid
|
Undecided
|
Unassigned |
Bug Description
A fresh pull of the master branch using a minimal deployment strategy (no ceph etc) configures keystone to use https interface via haproxy. When you run setup-openstack
Seems to be configured to test http only.
I can confirm that I can get to the https:/
This issue is still confirmed despite setting the following lines too http or https in user_variables.yml:
keystone_
openstack_
debug output:
The full traceback is:
Traceback (most recent call last):
File "/tmp/ansible_
client_
File "/tmp/ansible_
r = urllib_
File "/usr/lib/
return opener.open(url, data, timeout)
File "/usr/lib/
response = self._open(req, data)
File "/usr/lib/
'_open', req)
File "/usr/lib/
result = func(*args)
File "/usr/lib/
return self.do_
File "/usr/lib/
r = h.getresponse(
File "/usr/lib/
response.
File "/usr/lib/
version, status, reason = self._read_status()
File "/usr/lib/
raise BadStatusLine(line)
BadStatusLine: ''
failed: [infra1_
"attempts": 12,
"changed": false,
"content": "",
"invocation": {
"body": null,
"dest": null,
"mode": null,
"src": null,
],
"url": "http://
}
},
"item": {
"url": "http://
},
"msg": "Status code was -1 and not [300]: An unknown error occurred: ''",
"redirected": false,
"status": -1,
"url": "http://
}
description: | updated |
description: | updated |
description: | updated |
Changed in openstack-ansible: | |
status: | New → Invalid |
As discussed in http:// eavesdrop. openstack. org/irclogs/ %23openstack- ansible/ %23openstack- ansible. 2018-10- 17.log. html#t2018- 10-17T19: 47:53 there was a misconfiguration and some options were presented.
There is still an issue in that if keystone is set to listen on HTTPS, then client <-https-> haproxy <-https-> keystone will fail miserably. If this is an issue, please register a bug to resolve that in particular.