yahoo-eng-team team mailing list archive

[OpenStack Infra <1795851@xxxxxxxxxxxxxxxxxx>]

Reviewed:  https://review.openstack.org/627051
Committed: https://git.openstack.org/cgit/openstack/horizon/commit/?id=e832c8549b3cb7c0f4671668a5b404374eb8a64b
Submitter: Zuul
Branch:    master

commit e832c8549b3cb7c0f4671668a5b404374eb8a64b
Author: Akihiro Motoki <amotoki@xxxxxxxxx>
Date:   Sun Dec 23 05:57:41 2018 +0900

    Allow to specify custom templates for clouds.yaml and openrc
    
    Change-Id: I1ef6899f4d14c660eba50f16e813c280657475fc
    Closes-Bug: #1795851


** Changed in: horizon
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1795851

Title:
  Horizon Provides wrong RC file

Status in OpenStack Dashboard (Horizon):
  Fix Released

Bug description:
  The are many ways to authenticate to keystone service saml, openid, ldap, etc. 
  each use case has it's own environment variables requirements to make a successful API request.

  for example saml2 openrc file needs to contain:

  
  --os-auth-type v3samlpassword 
  --os-identity-provider <name of ido in keystone>
  --os-identity-provider-url <ECP endpoint>
  --os-protocol saml2 
  --os-username <federated username>
  --os-password 
  --os-auth-url http://sp.keystone:5000/v3 
  --os-project-name demo 
  --os-project-domain-name Default 
  --os-identity-api-versione 3 

  OIDC, ldap, mellon, k2k - they are all different.

  The RC file provided by horizon is wrong, maybe most of the time.
  https://github.com/openstack/horizon/blob/master/openstack_dashboard/dashboards/project/api_access/templates/api_access/openrc.sh.template

  Since these files are only available to users after they log in, they
  should be provided dynamically from keystone service.

To manage notifications about this bug go to:
https://bugs.launchpad.net/horizon/+bug/1795851/+subscriptions