yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1255321] Re: v3 PKI token requests result in 500 error when run in apache

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Steve Martinelli <stevemar@xxxxxxxxxx>
Date: Sun, 21 Sep 2014 07:25:51 -0000
Reply-to: Bug 1255321 <1255321@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This was fixed when PKIZ was added to Keystone: 
https://github.com/openstack/keystone/commit/063070f21ffc3345e2b25904ff4a1ae89f539c32

** Changed in: keystone
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1255321

Title:
  v3 PKI token requests result in 500 error when run in apache

Status in OpenStack Identity (Keystone):
  Fix Released
Status in Python client library for Keystone:
  Fix Released

Bug description:
  A 500 Internal Server Error is generated when requests are issued to
  /v3/auth/tokens

  mkdir /var/www/cgi-bin/keystone
  ln /usr/share/keystone/keystone.wsgi /var/www/cgi-bin/keystone/main 
  ln /usr/share/keystone/keystone.wsgi /var/www/cgi-bin/keystone/admin

  /etc/httpd/conf.d/wsgi-keystone.conf
  Listen 5000
  <VirtualHost *:5000>
  WSGIScriptAlias /  /var/www/cgi-bin/keystone/main

  <Location />
  AuthType None
  </Location>
  </VirtualHost>

  Listen 35357
  <VirtualHost *:35357>
  WSGIScriptAlias /  /var/www/cgi-bin/keystone/admin
                                                                                  
  <Location />
  AuthType None
  </Location>
  </VirtualHost>

  Using version: 
  python-keystone-2013.2-1.el6ost

  keystone.conf
  [signing]
  token_format = PKI

  testuser:
  keystone user-create --name tester --pass tester --email tester@xxxxxxxx
  keystone role-create --name tester
  keystone tenant-create --name tester
  keystone user-role-add --user-id {USER_ID} --role-id {ROLE_ID} --tenant-id {TENANT_ID}

  Request:
  curl -H "Content-type: application/json" -d '{"auth": {"identity": {"methods": ["password"], "password": {"user": {"domain": {"name": "Default"}, "name": "tester","password": "tester"}}}, "scope": {"project": {"domain": {"name": "Default"},"name": "tester"}}}}' http://127.0.0.1:5000/v3/auth/tokens

  Note:
  The issues is not present if UUID tokens are used.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1255321/+subscriptions