File: /etc/keystone/puppet.conf does not contain all required configuration keys

Bug #1894162 reported by Fauzi on 2020-09-03
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
puppet-keystone
Undecided
Unassigned

Bug Description

After installing keystone the bootstrap part fails with the following message:

Error: Could not prefetch keystone_role provider 'openstack': File: /etc/keystone/puppet.conf does not contain all required configuration keys. Cannot authenticate to Keystone.
Error: Failed to apply catalog: File: /etc/keystone/puppet.conf does not contain all required configuration keys. Cannot authenticate to Keystone.

bootstrap parameters from hiera:

keystone::bootstrap::password: '******'
keystone::bootstrap::public_url: "http://%{::fqdn}:5000/v3/"
keystone::bootstrap::admin_url: "http://%{::fqdn}:5000/v3/"
keystone::bootstrap::internal_url: "http://%{::fqdn}:5000/v3/"
keystone::bootstrap::region: 'RegionOne'

Revision history for this message
Fauzi (fg-uchicago) wrote :

I'm not sure if it is a bug or not, most likely it isn't. I was expecting the file (/etc/keystone/puppet.conf) to be automatically populated with the right values as I'm passing then already during the configuration.

After going through the lib files, found out that the puppet.conf file format should be as follow:

[keystone_authtoken]
username = admin
password = something
auth_url = http://controller:5000/v3/
project_name = admin
region_name = RegionOne

Was able to get things working after that.

Revision history for this message
Fauzi (fg-uchicago) wrote :

creating a prebootstrap class that fills the file up with the needed information seems suffice.

Revision history for this message
Fauzi (fg-uchicago) wrote :

After digging in, found a workaround to the issue.

It'll be nice to let the bootstrap class to fill up the file before executing the bootstrap command beforehand without the need for additional classes. but just a suggestion, not a bug.

Changed in puppet-keystone:
status: New → Opinion
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers