yahoo-eng-team team mailing list archive

[Steve Martinelli <1624109@xxxxxxxxxxxxxxxxxx>]

Sounds this should be invalid. It picks up if the option is required or
not, and prints valid output when the user id is garbage

** Changed in: keystone
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1624109

Title:
  keystone-manage fernet_setup fails silently

Status in OpenStack Identity (keystone):
  Invalid

Bug description:
  This from the Newton build openstack-
  keystone-10.0.0-0.20160905112836.816d260.el7.centos.noarch

  I created a /etc/keystone/fernet-keys  directory with 775 permissions
  and tried to run keystone-manage fernet_setup:

  [root@newton1 fernet-keys]# keystone-manage  fernet_setup 
  usage: keystone-manage [bootstrap|credential_setup|db_sync|db_version|doctor|domain_config_upload|fernet_rotate|fernet_setup|mapping_populate|mapping_purge|mapping_engine|pki_setup|saml_idp_metadata|token_flush] fernet_setup
         [-h] --keystone-user KEYSTONE_USER --keystone-group KEYSTONE_GROUP
  keystone-manage [bootstrap|credential_setup|db_sync|db_version|doctor|domain_config_upload|fernet_rotate|fernet_setup|mapping_populate|mapping_purge|mapping_engine|pki_setup|saml_idp_metadata|token_flush] fernet_setup: error: argument --keystone-user is required

  
  Two issues, the first is that it's asking for a --keystone-user, and --keystone-group switch, which is probably not meant to be required switches for this command.

  If I supply some value for these switches, the command executes but
  does nothing (does not generate startup keys in the directory).   I am
  unable to testout fernet tokens.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1624109/+subscriptions