<div dir="ltr"><span style="font-size:12.8px">Davide,</span><div style="font-size:12.8px">Yes I am using the heat credentials as you have mentioned. But still I am getting Authentication required error.</div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>Regards,<br></div>NareshA.<br></div></div></div>
<br><div class="gmail_quote">On Wed, Feb 1, 2017 at 4:01 PM, NareshA kumar <span dir="ltr"><<a href="mailto:nka@criterionnetworks.com" target="_blank">nka@criterionnetworks.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Davide,<div>Yes I am using the heat credentials as you have mentioned. But still I am getting Authentication required error.</div><div><br></div><div>I am attaching heat-api.log here for your reference. I am guessing that I would have missed something while creating heat domains.</div></div><div class="gmail_extra"><br clear="all"><div><div class="m_-2080276478268442852gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>Regards,<br></div>NareshA.<br></div></div></div><div><div class="h5">
<br><div class="gmail_quote">On Wed, Feb 1, 2017 at 3:14 PM, Davide Panarese <span dir="ltr"><<a href="mailto:dpanarese@enter.eu" target="_blank">dpanarese@enter.eu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word"><div>If you use heat creadential for token request it works?</div><div><br></div><div>export OS_AUTH_URL=<a href="https://identity.cncloud.com:5000/v2.0" target="_blank">https://identity.c<wbr>ncloud.com:5000/v2.0</a></div><div>export OS_REGION_NAME=RegionOne</div><div>export OS_USERNAME=heat</div><div>export OS_TENANT_NAME=services</div><div>export OS_PASSWORD=heat</div><div><br></div><div>keystone token-get </div><div><br></div><div>Davide<br><blockquote type="cite"><span><div>On 01 Feb 2017, at 10:10, NareshA kumar <<a href="mailto:nka@criterionnetworks.com" target="_blank">nka@criterionnetworks.com</a>> wrote:</div><br class="m_-2080276478268442852m_5396508831408631585Apple-interchange-newline"></span><div><div dir="ltr"><span>I have associated heat user to services tenant and gave it a admin role.<div><br></div><div><div>keystone user-role-list --user heat --tenant services</div><div>+-----------------------------<wbr>-----+-------+----------------<wbr>------------------+-----------<wbr>-----------------------+</div><div>| id | name | user_id | tenant_id |</div><div>+-----------------------------<wbr>-----+-------+----------------<wbr>------------------+-----------<wbr>-----------------------+</div><div>| 2b995253c23e4c1db8cd374346a4ec<wbr>d4 | admin | 645eb7e9f04f4a2b8df65272a23c13<wbr>94 | 024890084b7642e9b8535b52a86584<wbr>ea |</div><div>+-----------------------------<wbr>-----+-------+----------------<wbr>------------------+-----------<wbr>-----------------------+</div></div><div><br></div><div>heat --debug stack-list</div><div><br></div></span><div><span><div>DEBUG (session) REQ: curl -g -i -X GET <a href="https://identity.cncloud.com:5000/v2.0" target="_blank">https://identity.cncloud.com:5<wbr>000/v2.0</a> -H "Accept: application/json" -H "User-Agent: python-keystoneclient"</div><div>DEBUG (session) RESP: [200] x-openstack-request-id: req-2515497e-671b-475e-b48c-0c<wbr>b6f2ccfe2f content-length: 347 via: 1.1 <a href="http://identity.cncloud.com:5000/" target="_blank">identity.cncloud.com:5000</a> access-control-expose-headers: Accept, Content-Type, X-Auth-Token, X-Subject-Token vary: X-Auth-Token server: Apache/2.4.7 (Ubuntu) connection: close access-control-allow-methods: GET POST OPTIONS PUT DELETE PATCH date: Wed, 01 Feb 2017 09:07:01 GMT access-control-allow-origin: * access-control-allow-headers: Accept, Content-Type, X-Auth-Token, X-Subject-Token content-type: application/json x-distribution: Ubuntu </div><div>RESP BODY: {"version": {"status": "stable", "updated": "2014-04-17T00:00:00Z", "media-types": [{"base": "application/json", "type": "application/vnd.openstack.ide<wbr>ntity-v2.0+json"}], "id": "v2.0", "links": [{"href": "<a href="https://identity.cncloud.com:5000/v2.0/" target="_blank">https://identity.cncloud.com:<wbr>5000/v2.0/</a>", "rel": "self"}, {"href": "<a href="http://docs.openstack.org/" target="_blank">http://docs.openstack.org/</a>", "type": "text/html", "rel": "describedby"}]}}</div><div><br></div><div>DEBUG (v2) Making authentication request to <a href="https://identity.cncloud.com:5000/v2.0/tokens" target="_blank">https://identity.cncloud.com:5<wbr>000/v2.0/tokens</a></div></span><div>DEBUG (session) REQ: curl -g -i -X GET <a href="http://54.174.88.227:8004/v1/0c28d40bdcf0472d8dfb214a5c0286c4/stacks" target="_blank"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> http://54.174.88.227:8004/v1/0<wbr>c28d40bdcf0472d8dfb214a5c0286c<wbr>4/stacks</a>? -H "Accept: application/json" -H "User-Agent: python-heatclient" -H "X-Region-Name: RegionOne" -H "X-Auth-Token: {SHA1}9cc75daaff59cdb14a75bfb7<wbr>4ca6d77ebb8d8ac6" -H "Content-Type: application/json" -H "X-Auth-Url: <a href="https://identity.cncloud.com:5000/v2.0" target="_blank">https://identity.cncloud.com:5<wbr>000/v2.0</a>"</div><div><div class="m_-2080276478268442852h5"><div>DEBUG (session) RESP:</div><div>DEBUG (v2) Making authentication request to <a href="https://identity.cncloud.com:5000/v2.0/tokens" target="_blank">https://identity.cncloud.com:5<wbr>000/v2.0/tokens</a></div><div>DEBUG (session) RESP:</div><div>Traceback (most recent call last):</div><div> File "/usr/bin/heat", line 10, in <module></div><div> sys.exit(main())</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/shell.py", line 706, in main</div><div> HeatShell().main(args)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/shell.py", line 656, in main</div><div> args.func(client, args)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/v1/shell.py", line 581, in do_stack_list</div><div> utils.print_list(stacks, fields, sortby_index=3)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/openstack/commo<wbr>n/cliutils.py", line 169, in print_list</div><div> for o in objs:</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/v1/stacks.py", line 100, in paginate</div><div> stacks = self._list(url, 'stacks')</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/openstack/commo<wbr>n/apiclient/base.py", line 117, in _list</div><div> body = self.client.get(url).json()</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/common/http.py"<wbr>, line 292, in get</div><div> return self.client_request("GET", url, **kwargs)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/common/http.py"<wbr>, line 285, in client_request</div><div> resp, body = self.json_request(method, url, **kwargs)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/common/http.py"<wbr>, line 266, in json_request</div><div> resp = self._http_request(url, method, **kwargs)</div><div> File "/usr/lib/python2.7/dist-packa<wbr>ges/heatclient/common/http.py"<wbr>, line 361, in _http_request</div><div> raise exc.from_response(resp)</div><div>heatclient.exc.HTTPUnauthorize<wbr>d: ERROR: Authentication required</div></div></div></div><div><br></div></div><div><div class="m_-2080276478268442852h5"><div class="gmail_extra"><br clear="all"><div><div class="m_-2080276478268442852m_5396508831408631585gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>Regards,<br></div>NareshA.<br></div></div></div>
<br><div class="gmail_quote">On Wed, Feb 1, 2017 at 2:16 PM, Davide Panarese <span dir="ltr"><<a href="mailto:dpanarese@enter.eu" target="_blank">dpanarese@enter.eu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">Could you debug heat api call with heat —debug stack-list?<div>Did you associate heat user to service tenant and give it admin role?</div><div><br></div><div>Davide</div><div><div><blockquote type="cite"><div><div class="m_-2080276478268442852m_5396508831408631585h5"><div>On 31 Jan 2017, at 19:54, NareshA kumar <<a href="mailto:nka@criterionnetworks.com" target="_blank">nka@criterionnetworks.com</a>> wrote:</div><br class="m_-2080276478268442852m_5396508831408631585m_5765547782561637881Apple-interchange-newline"></div></div><div><div><div class="m_-2080276478268442852m_5396508831408631585h5"><div dir="ltr"><div style="font-size:12.8px">Hi,</div><div style="font-size:12.8px">I am installing heat in kilo with keystone v2 APIs. As per document I have configured the endpoints and heat.conf. "heat stack-list" gives me Authentication required error. In heat-api.log I am seeing "Authorization failed for token" message. </div><div style="font-size:12.8px">Can anyone help me solve this issue?</div><div style="font-size:12.8px"><br></div><div><div class="m_-2080276478268442852m_5396508831408631585m_5765547782561637881gmail_signature"><div dir="ltr"><div>Regards,<br></div>NareshA.<br></div></div></div>
</div>
<br></div></div><span class="m_-2080276478268442852m_5396508831408631585HOEnZb"><font color="#888888">--
<br><font color="#999999" face="Arial, Helvetica, sans-serif" size="1"> Questo messaggio e' stato analizzato con Libra ESVA ed e' risultato non infetto.
<br><a href="http://mx01.enter.it/cgi-bin/learn-msg.cgi?id=32A47402B1.A84A6" target="_blank">Clicca qui per segnalarlo come spam.</a></font>
<font color="#999999" face="Arial, Helvetica, sans-serif" size="1"><br><a href="http://mx01.enter.it/cgi-bin/learn-msg.cgi?blacklist=1&id=32A47402B1.A84A6" target="_blank">Clicca qui per metterlo in blacklist</a></font>
______________________________<wbr>_________________</font></span><span><br>Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k</a><br>Post to : <a href="mailto:openstack@lists.openstack.org" target="_blank">openstack@lists.openstack.org</a><br>Unsubscribe : <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k</a><br></span></div></blockquote></div><br></div></div></blockquote></div><br></div>
<br>--
<br><font color="#999999" face="Arial, Helvetica, sans-serif" size="1"> Questo messaggio e' stato analizzato con Libra ESVA ed e' risultato non infetto.
<br><a href="http://mx01.enter.it/cgi-bin/learn-msg.cgi?id=557444011D.A905A" target="_blank">Clicca qui per segnalarlo come spam.</a></font>
<font color="#999999" face="Arial, Helvetica, sans-serif" size="1"><br><a href="http://mx01.enter.it/cgi-bin/learn-msg.cgi?blacklist=1&id=557444011D.A905A" target="_blank">Clicca qui per metterlo in blacklist</a></font>
______________________________<wbr>_________________<br>Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k</a><br>Post to : <a href="mailto:openstack@lists.openstack.org" target="_blank">openstack@lists.openstack.org</a><br>Unsubscribe : <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k</a><br></div></div></div></blockquote></div><br></div></blockquote></div><br></div></div></div>
</blockquote></div><br></div>