puppet-keystone

keystone::endpoint admin_protocol parameter

Bug #1267627 reported by Derek Yarnell on 2014-01-09

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	puppet-keystone	Fix Released	Undecided	Emilien Macchi	puppet-keystone 6.0.0 "6.0.0"

Bug Description

In the examples directory for apache ssl support for keystone there is a example with

class { 'keystone::endpoint':
        public_address => $::fqdn,
        admin_address => $::fqdn,
        internal_address => $::fqdn,
        public_protocol => 'https',
        admin_protocol => 'https'
}

This is rejected as the keystone::endpoint class does not have the parameter admin_protocol available. Is this on purpose and the example is just wrong or was this an oversight? Or is it not possible to secure the admin/internal keystone interfaces? It seems that the protocol for admin and private are hard coded to http (in manifests/endpoint.pp)

keystone_endpoint { "${region}/keystone":
    ensure => present,
    public_url => "${public_protocol}://${public_address}:${public_port}/${version}",
    admin_url => "http://${admin_address}:${admin_port}/${version}",
    internal_url => "http://${internal_address}:${real_internal_port}/${version}",
    region => $region,
}

Mathieu Gagné (mgagne) on 2014-01-09

affects:

puppet-openstack → puppet-keystone

Satyanarayana Patibandla (satya-patibandla) on 2014-08-08

Changed in puppet-keystone:
assignee:	nobody → Satyanarayana Patibandla (satya-patibandla)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-04-14: Fix proposed to puppet-keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/173566

Changed in puppet-keystone:
assignee:	Satyanarayana Patibandla (satya-patibandla) → Emilien Macchi (emilienm)
status:	New → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-04-20: Fix merged to puppet-keystone (master)

Reviewed: https://review.openstack.org/173566
Committed: https://git.openstack.org/cgit/stackforge/puppet-keystone/commit/?id=3f0c6d5f96d84108d03f0fec0a477cb714baca64
Submitter: Jenkins
Branch: master

commit 3f0c6d5f96d84108d03f0fec0a477cb714baca64
Author: Emilien Macchi <email address hidden>
Date: Tue Apr 14 18:11:07 2015 -0400

examples: fix apache_with_paths.pp

Minor fix for examples, to avoid any confusion.

Change-Id: I6e07b0823b141f65be237303a15520d46cda5e5a
Closes-bug: #1267627

Changed in puppet-keystone:
status:	In Progress → Fix Committed

Matt Fischer (mfisch) on 2015-06-02

Changed in puppet-keystone:
milestone:	none → 6.0.0
status:	Fix Committed → Fix Released

Mathieu Gagné (mgagne) on 2015-07-09

Changed in puppet-keystone:
status:	Fix Released → Fix Committed

Mathieu Gagné (mgagne) on 2015-07-10

Changed in puppet-keystone:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.