Do the following steps
1) Set up keystone for federation.
2) Generated a unscoped federated token
3) Generate a scoped token using token in step 2
4) Set up nova/glance for using keystone v3 API.
5) Try an image list command using following request
Request
GET http://sp.machine:9292/v2/images
Headers:
Content-Type: application/json
Accept: application/json
X-Auth-Token: e92a49262a8d403db838d6494e4f9991
6) This will break the auth_token(middleware\auth_token.py) middleware with key error at the following place
user = token['user'] user_domain_id = user['domain']['id'] user_domain_name = user['domain']['name']
in the function _build_user_headers.
This is because the token does not contain any domain id or name under the user info, since federated tokens have no information about the user
Following is the token information, not that there is no domain under users
Do the following steps
1) Set up keystone for federation.
2) Generated a unscoped federated token
3) Generate a scoped token using token in step 2
4) Set up nova/glance for using keystone v3 API.
5) Try an image list command using following request
Request
GET http:// sp.machine: 9292/v2/ images db838d6494e4f99 91
Headers:
Content-Type: application/json
Accept: application/json
X-Auth-Token: e92a49262a8d403
6) This will break the auth_token( middleware\ auth_token. py) middleware with key error at the following place
user = token['user']
user_ domain_ id = user['domain' ]['id']
user_ domain_ name = user['domain' ]['name' ] user_headers.
in the function _build_
This is because the token does not contain any domain id or name under the user info, since federated tokens have no information about the user
Following is the token information, not that there is no domain under users
{ 2f8fe85e88b21f3 b4c", 22T10:15: 05.367852Z" , 7381fd1b2b4d890 339",
"endpoints" : [ /127.0. 0.1/keystone/ main/v3",
"interface ": "internal",
"region" : "regionOne", cba959d2e27c5fe 3a2" /172.20. 15.103: 8443/keystone/ main/v3",
"interface ": "public",
"region" : "regionOne", 7d9149d56d45549 9ac" /172.20. 15.103: 8443/keystone/ admin/v3",
"interface ": "admin",
"region" : "regionOne", c4a4d84068c71d3 bf2" /172.20. 15.103: 8443/keystone/ admin/v2. 0",
"interface ": "admin",
"region" : "regionOne", eb8c8b8a5c5fa6a d47" /127.0. 0.1/keystone/ main/v2. 0",
"interface ": "internal",
"region" : "regionOne", 85a106d86e0fea9 bd1" /172.20. 15.103: 8443/keystone/ main/v2. 0",
"interface ": "public",
"region" : "regionOne", c4805cf51b3dddb 84b" cd84b72cae3ebd7 9e5"
"endpoints" : [ 172.20. 15.103: 9292",
"interface ": "admin",
"region" : "RegionOne", 239744ea168efcd 109" 172.20. 15.103: 9292",
"interface ": "internal",
"region" : "RegionOne", 21aa8a73fab15f0 7bb" 127.0.0. 1:9292",
"interface ": "public",
"region" : "RegionOne", 0bbfe8d3572e23e e5d" 59810d95e2c591f e21"
"endpoints" : [ 172.20. 15.103: 8776/v1/ 6e99b7d923bc437 381fd1b2b4d8903 39",
"interface ": "admin",
"region" : "RegionOne", 3783298eb67159b 5c6" 172.20. 15.103: 8776/v1/ 6e99b7d923bc437 381fd1b2b4d8903 39",
"interface ": "internal",
"region" : "RegionOne", 1294718b8fe4988 daf" 127.0.0. 1:8776/ v1/6e99b7d923bc 437381fd1b2b4d8 90339",
"interface ": "public",
"region" : "RegionOne", 2a929536f90a161 2b6" e9b0353f02dec22 512"
"endpoints" : [ 172.20. 15.103: 9696",
"interface ": "admin",
"region" : "RegionOne", 2cae2e2a8556919 c2f" 172.20. 15.103: 9696",
"interface ": "internal",
"region" : "RegionOne", 0689e373c1e2a08 c27" 127.0.0. 1:9696",
"interface ": "public",
"region" : "RegionOne", 45b9efed6374fc2 a43" d381f6621e67840 9c1"
"endpoints" : [ 172.20. 15.103: 8774/v2/ 6e99b7d923bc437 381fd1b2b4d8903 39",
"interface ": "admin",
"region" : "RegionOne", 9289556a590f0c4 64f" 172.20. 15.103: 8774/v2/ 6e99b7d923bc437 381fd1b2b4d8903 39",
"interface ": "internal",
"region" : "RegionOne", be889ac6b88d071 ae4" 127.0.0. 1:8774/ v2/6e99b7d923bc 437381fd1b2b4d8 90339",
"interface ": "public",
"region" : "RegionOne", fd956ed0136d624 04b" 23b3dd2197f3e24 3cf"
"endpoints" : [ 172.20. 15.103: 8777",
"interface ": "admin",
"region" : "RegionOne", 2092380bea89999 6b2" 172.20. 15.103: 8777",
"interface ": "internal",
"region" : "RegionOne", 5eb385b8feb5de9 d2d" 127.0.0. 1:8777",
"interface ": "public",
"region" : "RegionOne", a9ba3a4ab600717 ef7" b78501bfb46619b d86" 22T09:15: 05.367875Z"
"token": {
"methods": [
"saml2"
],
"roles": [
{
"id": "aad3b40ebb3b44
"name": "admin"
}
],
"expires_at": "2014-07-
"project": {
"domain": {
"id": "default",
"name": "Default"
},
"id": "6e99b7d923bc43
"name": "admin"
},
"catalog": [
{
{
"url": "https:/
"id": "f5dad391109542
},
{
"url": "https:/
"id": "4f76970e4ab549
},
{
"url": "https:/
"id": "b85e76ca32f640
},
{
"url": "https:/
"id": "1ae909491d754a
},
{
"url": "https:/
"id": "daf4ce3876d042
},
{
"url": "https:/
"id": "f763c80100954b
}
],
"type": "identity",
"id": "0f79e21861a94f
},
{
{
"url": "http://
"id": "16ffa8cebadd4d
},
{
"url": "http://
"id": "944adaa070f44f
},
{
"url": "http://
"id": "cd945f6a5ee841
}
],
"type": "image",
"id": "fe5d67da897b43
},
{
{
"url": "http://
"id": "6d93d29279a648
},
{
"url": "http://
"id": "9416222ad31a41
},
{
"url": "http://
"id": "4d924ad3cb1a44
}
],
"type": "volume",
"id": "55ef917e57a540
},
{
{
"url": "http://
"id": "5fe8a0a8f6624e
},
{
"url": "http://
"id": "0b9f9b8ce30446
},
{
"url": "http://
"id": "bcb231d9baab43
}
],
"type": "network",
"id": "b8aaed7927834f
},
{
{
"url": "http://
"id": "55489ebf679348
},
{
"url": "http://
"id": "a9da7a6cf58e45
},
{
"url": "http://
"id": "249a8f15a5034c
}
],
"type": "compute",
"id": "ef0ff2f7395f45
},
{
{
"url": "http://
"id": "95c930d0d59342
},
{
"url": "http://
"id": "2ca7e051514345
},
{
"url": "http://
"id": "5b86fbfe14914b
}
],
"type": "metering",
"id": "a028437e8c364b
}
],
"extras": {},
"user": {
"id": "admin",
"name": "admin"
},
"issued_at": "2014-07-
}
}