
+1. :)<div><br></div><div>Yun</div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Nov 27, 2012 at 9:59 AM, Jay Pipes <span dir="ltr"><<a href="mailto:jaypipes@gmail.com" target="_blank">jaypipes@gmail.com</a>></span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">jp833r@c2r1:~$ keystone endpoint-list<br>

No handlers could be found for logger "keystoneclient.client"<br>

Authorization Failed: Unable to communicate with identity service:<br>

[Errno 1] _ssl.c:504: error:14090086:SSL<br>

routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed. (HTTP 400)<br>

jp833r@c2r1:~$ keystone --insecure endpoint-list<br>

usage: keystone [--os_username <auth-user-name>]<br>

<snip><br>

                <subcommand> ...<br>

keystone: error: unrecognized arguments: --insecure<br>

<br>

Whereas nova has the --insecure option, but doesn't have such a nice<br>

error message indicating that certificate verify failed :)<br>

<br>

jp833r@c2r1:~$ nova list<br>

ERROR: n/a (HTTP 400)<br>

jp833r@c2r1:~$ nova --insecure list<br>

+----+------+--------+----------+<br>

| ID | Name | Status | Networks |<br>

+----+------+--------+----------+<br>

+----+------+--------+----------+<br>

<br>

Thoughts? I think it would be great to get:<br>

<br>

1) Some consistency between the two tools regarding how they indicate<br>

that cert verification failed<br>

<br>

2) An --insecure option consistent in all clients for use in<br>

test/non-prod environments that have self-signed certs<br>

<br>

3) The ability for all CLI tools to support a --version option (or<br>

version command)<br>

<br>

Do people agree?<br>

<br>

Best,<br>

-jay<br>

<br>

_______________________________________________<br>

OpenStack-dev mailing list<br>

<a href="mailto:OpenStack-dev@lists.openstack.org">OpenStack-dev@lists.openstack.org</a><br>

<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev" target="_blank">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev</a><br>

</blockquote></div><br></div>