[Openstack] Re keystone to keystone federation
sreeja kannagundla
sreejakannagundla08 at gmail.com
Tue Sep 1 11:03:06 UTC 2015
> Hi
>
> I am working on keystone2keystone federatoin and using kilo version for
> both keystone-sp and keystone idp
> After configuring keystone-sp and keystone-idp I am trying to use the
> command :
>
> openstack federation project list -os-auth-type v3unscopedsaml
> --os-identity-provider k2k --os-auth-url https://keystone.sp:35357/v3
> --os-identity-provider-url
> https://keystone.idp:35357/v3/OS-FEDERATION/saml2/idp --os-username user
> --os-password password
>
> It returns an error:
>
> ERROR: openstack Expecting to find application/json in Content-Type header
> - the server could not comply with the request since it is either malformed
> or otherwise incorrect. The client is assumed to be in error. (HTTP 400)
> (Request-ID: req-4839f349-e3ed-403f-b456-dfc0d1aecbe4)
>
> This is because in keystoneclient/contrib/auth/v3/saml2.py, while sending
> a request to keystone.idp for saml assertion, the content type used is
> text/xml
>
> idp_response = session.post(
> self.identity_provider_url,
> headers={'Content-type': 'text/xml'},
> data=etree.tostring(idp_saml2_authn_request),
> requests_auth=(self.username, self.password),
> authenticated=False, log=False)
>
> why is keystone.idp not accepting the content type: text/xml?
> what can be the workaroung for this issue
>
> Thanks
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20150901/7eb060e7/attachment.html>
More information about the Openstack
mailing list