default domain must be set first
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
puppet-keystone |
Fix Released
|
Critical
|
Emilien Macchi |
Bug Description
When using::
class { 'keystone':
...
default_
}
or::
keystone_domain { 'some_other_
...
is_default => true,
}
the default_domain setting is not being applied before any domain scoped resource - keystone_user, keystone_tenant, (and keystone_group, and possibly others in the future). This causes errors like this::
# openstack --os-username admin --os-password password --os-project-name admin ...
Error: user 'admin' not found
because the user 'admin' is in the domain 'Default', not in 'some_other_
We need to have a way to make sure that `keystone_domain { ... is_default => true , }` is applied before all other domain scoped resources.
If that is not possible, then we will have to make sure that `class { 'keystone': default_domain => 'some_domain' }` is applied before all domain scoped resources.
Changed in puppet-keystone: | |
importance: | Undecided → Critical |
assignee: | nobody → Emilien Macchi (emilienm) |
Changed in puppet-keystone: | |
status: | Fix Committed → Fix Released |
Fix proposed to branch: master /review. openstack. org/205648
Review: https:/