FM client does not accept --insecure
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Francisco Giana |
Bug Description
Brief Description
-----------------
The insecure option works on the system and the dcmanager commands but not the fm commands. It should work consistently. In addition, if the commands don’t work with an ICA certificate they should. Priority is on the --insecure option.
Severity
--------
<Major: System/Feature is usable but degraded>
Steps to Reproduce
------------------
1. Enable https: system modify --https_
2. Configure remote-cli
3. Run fm alarm-list (from cli)
4. Or fm --fm-url https:/
for instance: fm --fm-url https:/
Expected Behavior
------------------
fm should support --insecure parameter and allow to connect against system configured with self-signed certificates or private ICA certificate.
Actual Behavior
----------------
fm does not support --insecure parameter
fm --insecure alarm-list
usage: fm [--version] [--debug] [-v] [--timeout TIMEOUT]
[--os-username OS_USERNAME] [--os-password OS_PASSWORD]
[--os-tenant-id OS_TENANT_ID] [--os-tenant-name OS_TENANT_NAME]
[--os-auth-url OS_AUTH_URL] [--os-region-name OS_REGION_NAME]
[--os-auth-token OS_AUTH_TOKEN] [--fm-url FM_URL]
[--fm-api-version FM_API_VERSION]
[--os-service-type OS_SERVICE_TYPE]
[--os-endpoint-type OS_ENDPOINT_TYPE]
[--os-user-
[--os-user-
[--os-project-id OS_PROJECT_ID] [--os-project-name OS_PROJECT_NAME]
[--os-project-
[--os-project-
<subcommand> ...
fm: error: unrecognized arguments: --insecure
Reproducibility
---------------
100% reproducible.
System Configuration
-------
Any system with https self-signed or ICA certificate activated.
Branch/Pull Time/Commit
-------
Last Pass
---------
N/A
Timestamp/Logs
--------------
after remote-cli has been configured and https_enabled enabled.
fm --debug alarm-list
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (extension:189) found extension EntryPoint.
DEBUG (session:494) REQ: curl -g -i -X GET https:/
DEBUG (connectionpool
WARNING (base:145) Failed to discover available identity versions when contacting https:/
DEBUG (base:182) Making authentication request to https:/
DEBUG (connectionpool
Must provide Keystone credentials or user-defined endpoint and token, error was: SSL exception connecting to https:/
Test Activity
-------------
Customer Testing
Workaround
----------
There is not workaround.
description: | updated |
Changed in starlingx: | |
importance: | Undecided → Medium |
assignee: | nobody → Francisco Giana (fgiana) |
tags: | added: stx.7.0 stx.fault |
Fix proposed to branch: master /review. opendev. org/c/starlingx /fault/ +/825132
Review: https:/