[Openstack-security] [Bug 1585147] Re: If http & https proxy is enabled on system then openstack services wont work as expected.
Dolph Mathews
1585147 at bugs.launchpad.net
Wed Jul 6 19:07:44 UTC 2016
The 503 is coming from an intermediary proxy (likely whatever you're
using to implement HTTPS), not keystone (keystone is not capable of
returning a 503).
** Changed in: keystone
Status: New => Invalid
--
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1585147
Title:
If http & https proxy is enabled on system then openstack services
wont work as expected.
Status in OpenStack Identity (keystone):
Invalid
Bug description:
Hi,
i am trying to setup multi node using mitaka version. if i enable Http
and https proxy on controller node then i was not able to create any
openstack services. steps to reproduce the error.
1. setup a controller node
2. edit hostname and hosts and add all ip address
> 10.0.0.10 controller
3. setup proxy for http and https
> export http_proxy='http://abc.com:8080/'
> export https_proxy='http://abc.com:8080/'
> export no_proxy='10.0.0.0/24'
4. export all tokens
> export OS_TOKEN=ADMIN_TOKEN
> export OS_URL=http://controller:35357/v3
> export OS_IDENTITY_API_VERSION=3
5. now try creating keystone services.
> openstack service create --name keystone --description "OpenStack Identity" identity
OUTPUT : Service Unavailable (HTTP 503)
even i added no proxy to exclude controller ip from proxy but apache
server is not serving eith proxy rules.
6. if we curl os_url : it always redirects to proxy server page.
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1585147/+subscriptions
More information about the Openstack-security
mailing list