← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #28300

[Bug 1419825] [NEW] sample_data script fails when run against ssl enabled keystone

  Thread PreviousDate PreviousThread Next 
Public bug reported:

When running the sample data script against ssl enabled keystone
warnings concerning the subjectAltName are returned by the service
(something like https://github.com/shazow/urllib3/issues/497), a test
call outside of the script succeeds but returns the following:

...urllib3/connection.py:251: SecurityWarning: Certificate has no `subjectAltName`, falling back to check for a `commonName` for now. This feature is being removed by major browsers and deprecated by RFC 2818. (See https://github.com/shazow/urllib3/issues/497 for details.)
  SecurityWarning
+-------------+----------------------------------+
|   Property  |              Value               |
+-------------+----------------------------------+
| description |        Dummy tenant test         |
|   enabled   |               True               |
|      id     | f1c91620ddd44b1aa19514ff199b44e3 |
|     name    |            extra_demo            |
|  parent_id  |                                  |
+-------------+----------------------------------+

this makes it impossible for the id to be ascertained on the first
request and subsequent calls hang or fail.

** Affects: keystone
     Importance: Undecided
     Assignee: David Charles Kennedy (dkennedy-p)
         Status: New

** Changed in: keystone
     Assignee: (unassigned) => David Charles Kennedy (dkennedy-p)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1419825

Title:
  sample_data script fails when run against ssl enabled keystone

Status in OpenStack Identity (Keystone):
  New

Bug description:
  When running the sample data script against ssl enabled keystone
  warnings concerning the subjectAltName are returned by the service
  (something like https://github.com/shazow/urllib3/issues/497), a test
  call outside of the script succeeds but returns the following:

  ...urllib3/connection.py:251: SecurityWarning: Certificate has no `subjectAltName`, falling back to check for a `commonName` for now. This feature is being removed by major browsers and deprecated by RFC 2818. (See https://github.com/shazow/urllib3/issues/497 for details.)
    SecurityWarning
  +-------------+----------------------------------+
  |   Property  |              Value               |
  +-------------+----------------------------------+
  | description |        Dummy tenant test         |
  |   enabled   |               True               |
  |      id     | f1c91620ddd44b1aa19514ff199b44e3 |
  |     name    |            extra_demo            |
  |  parent_id  |                                  |
  +-------------+----------------------------------+

  this makes it impossible for the id to be ascertained on the first
  request and subsequent calls hang or fail.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1419825/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next