python-openstackclient

moving authentication from keystoneclient to keystoneauth

Bug #1533369 reported by Navid Pustchi
14
This bug affects 2 people
Affects Status Importance Assigned to Milestone
keystoneauth
Fix Released
High
Navid Pustchi
python-openstackclient
Fix Released
High
Navid Pustchi

Bug Description

Auth plugins in keystone is deprecated and needs to be replaced with keystoneauth.

http://docs.openstack.org/developer/keystoneauth/migrating.html

See original description
Navid Pustchi (npustchi)
description: updated
Dean Troyer (dtroyer)
Changed in python-openstackclient:
status: New → Confirmed
importance: Undecided → High
Navid Pustchi (npustchi)
Changed in python-openstackclient:
assignee: nobody → Navid Pustchi (npustchi)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to python-openstackclient (master)

Fix proposed to branch: master
Review: https://review.openstack.org/276350

Changed in python-openstackclient:
status: Confirmed → In Progress
David Stanek (dstanek)
Changed in keystoneauth:
status: New → Confirmed
importance: Undecided → High
OpenStack Infra (hudson-openstack)
Changed in keystoneauth:
assignee: nobody → Navid Pustchi (npustchi)
status: Confirmed → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystoneauth (master)

Reviewed: https://review.openstack.org/289472
Committed: https://git.openstack.org/cgit/openstack/keystoneauth/commit/?id=e066afd4c09e49d4011770fc2899e02f29a71570
Submitter: Jenkins
Branch: master

commit e066afd4c09e49d4011770fc2899e02f29a71570
Author: Navid Pustchi <email address hidden>
Date: Mon Mar 7 17:11:09 2016 +0000

    Adding authentication compatibility for OpenStackClient

    In ksa, plugins loading is managed by ksa.
    OpenStackClient token_endpoint plugin expects get_auth_ref[1],
    (a method consistent with ksa auth plugins) which is not implemented
    in ksa token_endpoint.

    This change will not change overall ksa behavior, as it only makes
    OpenStackClient to be able to provide its token_endpoint plugin,
    necessary for authentication migration in osc from ksc to ksa[2].

    [1] https://github.com/openstack/python-openstackclient/blob/
    master/openstackclient/api/auth_plugin.py#L48-L50
    [2] http://docs.openstack.org/developer/keystoneauth/migrating.html

    Change-Id: I7d8f9a9f071a0d37244f8985bd7d09d49ba79eb8
    Closes-Bug: 1533369

Changed in keystoneauth:
status: In Progress → Fix Released
Revision history for this message
Davanum Srinivas (DIMS) (dims-v) wrote : Fix included in openstack/keystoneauth 2.5.0

This issue was fixed in the openstack/keystoneauth 2.5.0 release.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to python-openstackclient (master)

Reviewed: https://review.openstack.org/276350
Committed: https://git.openstack.org/cgit/openstack/python-openstackclient/commit/?id=6ae0d2e8a54fd5139e63a990ab4bdce634e73c5e
Submitter: Jenkins
Branch: master

commit 6ae0d2e8a54fd5139e63a990ab4bdce634e73c5e
Author: Navid Pustchi <email address hidden>
Date: Thu Feb 4 16:45:38 2016 +0000

    Moving authentication from keystoneclient to keystoneauth

    Currently OpenStackClient uses keystoneclient for authentication.
    This change will update OpenStackClient to use keystoneauth for
    authentication.

    All dependant test have been updated.

    Updating how auth_ref is set in the tests to use KSA fixtures had
    some racy side-effects. The user_role_list tests failed when they
    picked up an auth_ref that was a fixture. This exposed a weakness
    in ListUserRole that needed to be fixed at the same time re
    handling of unscoped tokens and options.

    Change-Id: I4ddb2dbbb3bf2ab37494468eaf65cef9213a6e00
    Closes-Bug: 1533369

Changed in python-openstackclient:
status: In Progress → Fix Released
Revision history for this message
Doug Hellmann (doug-hellmann) wrote : Fix included in openstack/python-openstackclient 3.0.0

This issue was fixed in the openstack/python-openstackclient 3.0.0 release.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.