yahoo-eng-team team mailing list archive

[Morgan Fainberg <morgan.fainberg@xxxxxxxxx>]

Brant is correct in this case. This is as designed. Listing all users is
only guaranteed to be possible within the scope of a specific domain.

Marking this bug as invalid for Keystone.

** Changed in: keystone
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1415588

Title:
  Cannot list users and groups with Keystone v3

Status in OpenStack Identity (Keystone):
  Invalid

Bug description:
  Openstack 2014.2.1 on CentOS 7

  Horizon is configured to use Keystone v3 API w/ domains:
  OPENSTACK_API_VERSIONS = {
      "identity": 3
  }
  OPENSTACK_KEYSTONE_MULTIDOMAIN_SUPPORT = True

  I logged in as admin and specified "default" domain on login page.
  When I select Identity->Users or Identity->Groups I got pop-up error
  message saying "Error: Unauthorized: Unable to retrieve user/group
  list."

  In keystone.log I see:
  2015-01-28 21:39:51.654 4207 WARNING keystone.common.controller [-] No domain information specified as part of list request
  2015-01-28 21:39:51.654 4207 WARNING keystone.common.wsgi [-] Authorization failed. The request you have made requires authentication. from 9.167.185.90
  2015-01-28 21:39:51.655 4207 INFO eventlet.wsgi.server [-] 9.167.185.90 - - [28/Jan/2015 21:39:51] "GET /v3/users HTTP/1.1" 401 313 0.008419
  2015-01-28 21:39:54.031 4243 WARNING keystone.common.controller [-] No domain information specified as part of list request
  2015-01-28 21:39:54.031 4243 WARNING keystone.common.wsgi [-] Authorization failed. The request you have made requires authentication. from 9.167.185.90
  2015-01-28 21:39:54.032 4243 INFO eventlet.wsgi.server [-] 9.167.185.90 - - [28/Jan/2015 21:39:54] "GET /v3/groups HTTP/1.1" 401 313 0.009917

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1415588/+subscriptions