yahoo-eng-team team mailing list archive

Thread
Date

[Bug 2080369] [NEW] Failure of ldap server connections should not block valid local users

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Steven Parker <2080369@xxxxxxxxxxxxxxxxxx>
Date: Wed, 11 Sep 2024 12:56:28 -0000
Reply-to: Bug 2080369 <2080369@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

Public bug reported:

Failure of keystone to establish a ldap connection via the ldap
integrator will also block authentication of local users.

During the time frame keystone reported the following errors:
/var/log/keystone/keystone.log.15.gz:(ldappool): 2024-08-27 08:15:23,367 ERROR Failure attempting to create and bind connector

The end users was blocked via horizon with 500 errors

Replicate with:
  Configure valid user in local keystone database
  Configure ldap charm with valid ldap server endpoint.
  Shutdown endpoint
  Observer failure via horizon

** Affects: keystone
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/2080369

Title:
  Failure of ldap server connections should not block valid local users

Status in OpenStack Identity (keystone):
  New

Bug description:
  Failure of keystone to establish a ldap connection via the ldap
  integrator will also block authentication of local users.

  During the time frame keystone reported the following errors:
  /var/log/keystone/keystone.log.15.gz:(ldappool): 2024-08-27 08:15:23,367 ERROR Failure attempting to create and bind connector

  The end users was blocked via horizon with 500 errors

  Replicate with:
    Configure valid user in local keystone database
    Configure ldap charm with valid ldap server endpoint.
    Shutdown endpoint
    Observer failure via horizon

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/2080369/+subscriptions