settingsLogin | Registersettings


Recent questions tagged tokens

0 votes
0 responses 26 views

Hi Folks,  In keystone middleware release 1.5.1, it supports validating tokens of users from other doamin. But the admin user can still talk to v2 only. That means admin user from other domains can't do the token validation at all. ...

asked Nov 2, 2017 in openstack-operators by Kuo_Hugo (1,160 points)   1
0 votes
18 responses 40 views

So the application credentials spec has merged - huge thanks to Monty and the Keystone team for getting this done: ...

asked Oct 30, 2017 in openstack-dev by Zane_Bitter (21,640 points)   4 6 9
4 x  
0 votes
1 response 479 views

Hi, Is it possible to have both v2.0 and v3 endpoints for Keystone? I’m trying to integrate a backup software into Swift, and it requires Keystone 2.0. I added the new endpoints fine, but I’m getting authentication/authorization errors: ...

asked Oct 26, 2017 in openstack-operators by Andy_Wojnarek (440 points)   3 3
0 votes
0 responses 63 views

Hello, I am working on deploying a lab environment using openstack-ansible. While executing the setup-openstack.yml I encounter errors on the following task: TASK [os_glance : Ensure glance service] ...

asked Oct 26, 2017 in openstack-operators by andres_sanchez_ramos (300 points)   2 3
0 votes
11 responses 11 views

Should this kind of change be discussed and have an agreement of the TC and User committee? ---------- Forwarded message ---------- From: Lance Bragstad Date: Fri, Oct 20, 2017 at 12:08 AM Subject: [Openstack-operators] [keystone][all] v2.0 ...

asked Oct 23, 2017 in openstack-dev by Yaguang_Tang (1,180 points)   1 3 4
4 x  
0 votes
6 responses 187 views

Hey all, Now that we're finishing up the last few bits of v2.0 removal, I'd like to send out a reminder that *Queens* will not include the *v2.0 keystone APIs* except the ec2-api. Authentication and validation of v2.0 tokens has been ...

asked Oct 20, 2017 in openstack-dev by Lance_Bragstad (11,080 points)   2 3 6
3 x  
0 votes
34 responses 39 views

Hey all, Back in a joint meeting with the TC, UC, Foundation and The Board it was decided as an area of OpenStack to focus was Simplifying OpenStack. This intentionally was very broad so the community can kick start the conversation and ...

asked Oct 4, 2017 in openstack-dev by Mike_Perez (13,120 points)   2 3 4
4 x  
0 votes
1 response 14 views

Siva, All changes for #1 are not in 17.1.8; there is a pull-request waiting your review for last few days. Note that the version EBSCO finally tested with was making one neutron API call per one pool PATCH API call. Original one was making ...

asked Sep 29, 2017 in openstack-dev by Praveen_Yalagandula (560 points)   1
0 votes
0 responses 15 views

Hi All Here’s a summary of the charm related discussion from PTG last week. # Cross Project Discussions ## Skip Level Upgrades This topic was discussed at the start of the week, in the context of supporting upgrades across multiple ...

asked Sep 20, 2017 in openstack-dev by James_Page (3,520 points)   1 4 6
0 votes
4 responses 3 views

Patrole tests occasionally fail while executing tests that test the Identity v3 Extensions API [0]. Previously, this was not the case when we used Fernet tokens and used a time.sleep(1) to allow for role-switching to work correctly. ...

asked Aug 11, 2017 in openstack-dev by Felipe_Monteiro (180 points)  
0 votes
0 responses 8 views

Hi all, Today we had good focus on RC1 bugs. We spent most of the keystone meeting and all of office hours discussing or reviewing fixes. Full logs can be found at the bottom of the note [0]. Here's a summary of what we accomplished: Bug ...

asked Aug 9, 2017 in openstack-dev by Lance_Bragstad (11,080 points)   2 3 6
0 votes
7 responses 620 views

Hi, I am running OpenStack Ocata that as originally provisioned using RDO Packstack. I currently have Keystone configured to use a single identity backend which is LDAP. Everything works great with this configuration except Heat and Magnum. ...

asked Jul 27, 2017 in openstack by Tristan_Evans (280 points)   1 1 1
0 votes
0 responses 10 views

Hi, I'm running a multi-region openstack setup. I'm running into a strange issue where when I try to open the novnc console, it will try to authenticate on a nova-consoleauth service in a random region. So, if I try to access a novnc ...

asked Jul 20, 2017 in openstack-operators by Jean-Philippe_Methot (600 points)   1 2 5
0 votes
1 response 16 views

Hello All, I've just installed ocata with trove and I found the same issue showed at the follwing link: The issue seems the same: in my log I found: 2017-06-19 21:07:33.959 39029 ...

asked Jul 10, 2017 in openstack-operators by Ignazio_Cassano (4,220 points)   2 9 16
0 votes
13 responses 24 views

Hi All, Andy and I have taken a stab at defining some test scenarios for anal the different message bus technologies: We've started with tests for just the oslo.messaging layer to analyze ...

asked Jul 6, 2017 in openstack-dev by Ken_Giusti (2,060 points)   3
0 votes
25 responses 58 views

Team, Here's the update to the base services resolution from the TC: First request is to Distros, Packagers, Deployers, anyone who installs/configures OpenStack: Please make ...

asked Jun 9, 2017 in openstack-dev by Davanum_Srinivas (35,920 points)   2 4 8
0 votes
18 responses 39 views

__________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: ...

asked Jun 1, 2017 in openstack-dev by Adrian_Turjak (2,660 points)   3 7
0 votes
4 responses 44 views

Hi all, There are several problems or inefficiencies in how we are dealing with auth to other services. Although it became much better in Newton, some things are still to be improved and I like to discuss how to tackle those and my ideas ...

asked Jun 1, 2017 in openstack-dev by Pavlo_Shchelokovskyy (4,760 points)   5 5
0 votes
22 responses 8 views

Hey all, To date we have two proposed solutions for tackling the admin-ness issue we have across the services. One builds on the existing scope concepts by scoping to an admin project [0]. The other introduces global role assignments [1] as ...

asked May 31, 2017 in openstack-dev by Lance_Bragstad (11,080 points)   2 3 6
0 votes
2 responses 26 views

Hello fellow OpenStackers, For the last while I've been looking at options for multi-region multi-master Keystone, as well as multi-master for other services I've been developing and one thing that always came up was there aren't many truly ...

asked May 19, 2017 in openstack by Adrian_Turjak (2,660 points)   3 7