This is my skyline.yaml file
#################
default:
access_token_expire: 3600
access_token_renew: 1800
cors_allow_origins: []
#database_url: sqlite:////tmp/skyline.db
database_url: mysql://skyline:skyline123@localhost:3306/skyline
debug: true
log_dir: /var/log/skyline
log_file: skyline.log
prometheus_basic_auth_password: ''
prometheus_basic_auth_user: ''
prometheus_enable_basic_auth: false
prometheus_endpoint: http://localhost:9091
secret_key: aCtmgbcUqYUy_HNVg5BDXCaeJgJQzHJXwqbXr0Nmb2o
session_name: session
ssl_enabled: false
openstack:
base_domains:
- heat_user_domain
default_region: RegionOne
enforce_new_defaults: true
extension_mapping:
floating-ip-port-forwarding: neutron_port_forwarding
fwaas_v2: neutron_firewall
qos: neutron_qos
vpnaas: neutron_vpn
interface_type: public
keystone_url: http://192.168.18.100:5000/v3
nginx_prefix: /api/openstack
reclaim_instance_interval: 604800
service_mapping:
baremetal: ironic
compute: nova
container: zun
container-infra: magnum
database: trove
identity: keystone
image: glance
key-manager: barbican
load-balancer: octavia
network: neutron
object-store: swift
orchestration: heat
placement: placement
sharev2: manilav2
volumev3: cinder
sso_enabled: false
sso_protocols:
- openid
sso_region: RegionOne
system_admin_roles:
- admin
- system_admin
system_project: service
system_project_domain: Default
system_reader_roles:
- system_reader
system_user_domain: Default
system_user_name: skyline
system_user_password: 'skyline123'
setting:
base_settings:
- flavor_families
- gpu_models
- usb_models
flavor_families:
- architecture: x86_architecture
categories:
- name: general_purpose
properties: []
- name: compute_optimized
properties: []
- name: memory_optimized
properties: []
- name: high_clock_speed
properties: []
- architecture: heterogeneous_computing
categories:
- name: compute_optimized_type_with_gpu
properties: []
- name: visualization_compute_optimized_type_with_gpu
properties: []
gpu_models:
- nvidia_t4
usb_models:
- usb_c
############
My problem is if I login as admin then everything works!! But for normal account (end-user) I am able to login in UI but when I click any instance or anything it throwing access error and in logs its showing me following:
2023-08-08 04:49:04.869 | DEBUG | keystoneauth1.session:request:946 - GET call to identity for http://192.168.18.100:5000/v3/users/e8b10077f9f84e03bf115aa10ae13852/projects used request id req-8988e75a-97c4-4b2a-8a37-23572453d31d
2023-08-08 04:49:04.912 | DEBUG | urllib3.connectionpool:_make_request:456 - http://192.168.18.100:5000 "POST /v3/auth/tokens HTTP/1.1" 401 109
2023-08-08 04:49:04.913 | DEBUG | keystoneauth1.session:request:976 - Request returned failure status: 401
2023-08-08 04:49:04.914 | DEBUG | skyline_apiserver.api.v1.policy:list_policies:103 - Keystone token is invalid. No privilege to access system scope.
It is clear that skyline doesn't pass proper token or authorization when using a normal user account but it does work with admin account. What could be wrong here?
Hi,For sqlite DB for skyline, I think you can followed by this step[1].ThanksBoxiang2023年8月8日 上午7:21,Satish Patel <satish.txt@gmail.com> 写道:Folks,Try to install skyline UI to replace horizon using doc: https://docs.openstack.org/skyline-apiserver/latest/install/docker-install-ubuntu.htmlEverything went well and I got a login page on http://x.x.x.x:9999 also it pulled Region/Domains. When I am trying to login with my account, I get an error: Username or Password is incorrect.I am using sqlite DB for skyline as per documents.No errors in logs command$ docker logs skylineWhen I use Chrome Developer Tools then it was indicating an error in these URLs.401 Unauthorized ( {"detail":"no such table: revoked_token"} )For this error message, I think you did not do bootstrap for skyline when you use sqlite db.<Screenshot 2023-08-07 at 7.21.21 PM.png>Find attached screenshot