yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1785585] Re: openstack(pike) Initialize Fernet key repositories in keystone have bug

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Chason Chan <chason.chan@xxxxxxxxxxx>
Date: Fri, 17 Aug 2018 09:26:33 -0000
Reply-to: Bug 1785585 <1785585@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Project changed: openstack-manuals => keystone

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1785585

Title:
  openstack(pike) Initialize Fernet key repositories in keystone have
  bug

Status in OpenStack Identity (keystone):
  New

Bug description:
  
  hello:

  I install pike openstack on ubuntu16.04;In keystone section,there have
  some question.

  root@controller:~# keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
  2018-08-06 05:10:26.318 4604 INFO keystone.token.providers.fernet.utils [-] [fernet_tokens] key_repository does not appear to exist; attempting to create it
  2018-08-06 05:10:26.318 4604 INFO keystone.token.providers.fernet.utils [-] Created a new key: /etc/keystone/fernet-keys/0
  2018-08-06 05:10:26.319 4604 INFO keystone.token.providers.fernet.utils [-] Starting key rotation with 1 key files: ['/etc/keystone/fernet-keys/0']
  2018-08-06 05:10:26.319 4604 INFO keystone.token.providers.fernet.utils [-] Current primary key is: 0
  2018-08-06 05:10:26.320 4604 INFO keystone.token.providers.fernet.utils [-] Next primary key will be: 1
  2018-08-06 05:10:26.320 4604 INFO keystone.token.providers.fernet.utils [-] Promoted key 0 to be the primary: 1
  2018-08-06 05:10:26.320 4604 INFO keystone.token.providers.fernet.utils [-] Created a new key: /etc/keystone/fernet-keys/0
  root@controller:~# vi /etc/keystone/keystone.conf 
  root@controller:~# keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
  2018-08-06 05:14:58.084 4687 INFO keystone.token.providers.fernet.utils [-] Key repository is already initialized; aborting.
  root@controller:~# keystone-manage credential_setup --keystone-user keystone --keystone-group keystone
  usage: keystone-manage [bootstrap|db_sync|db_version|domain_config_upload|fernet_rotate|fernet_setup|mapping_populate|mapping_purge|mapping_engine|pki_setup|saml_idp_metadata|ssl_setup|token_flush]
  keystone-manage: error: argument command: invalid choice: 'credential_setup' (choose from 'bootstrap', 'db_sync', 'db_version', 'domain_config_upload', 'fernet_rotate', 'fernet_setup', 'mapping_populate', 'mapping_purge', 'mapping_engine', 'pki_setup', 'saml_idp_metadata', 'ssl_setup', 'token_flush')

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1785585/+subscriptions