[openstack-dev] horizon failing on icehouse 100%, currently blocking all patches

Lyle, David david.lyle at hp.com
Sat Jun 21 20:49:05 UTC 2014

I released django_openstack_auth 1.1.6 on Friday to fix the login issue
with PKIZ.  Part of that release contained a pep8 cleanup that broke
Horizon, ultimately because we were doing something stupid in Horizon.  We
added a fix to Horizon to correct the issue on trunk
3055be5a9.  However, to allow older versions of Horizon to work with newer
django_openstack_auth versions, I currently have a patch up to restore the
strange import in openstack_auth  https://review.openstack.org/#/c/101715/
once that merges I will release django_openstack_auth 1.1.7 and all gates
should work again.


From:  Morgan Fainberg <morgan.fainberg at gmail.com>
Reply-To:  OpenStack List <openstack-dev at lists.openstack.org>
Date:  Saturday, June 21, 2014 at 12:27 PM
To:  OpenStack List <openstack-dev at lists.openstack.org>
Subject:  Re: [openstack-dev] horizon failing on icehouse 100%, currently
blocking all patches

The issue with the login page simply refreshing was due to a change in
Keystone that updated the type of Token issued by default from PKI to PKIZ
(compressed PKI/ASN1). The update to the django auth module was intended
to correct that specific
 issue with Keystone and Horizon (Juno).

The bug fix (not sure if another review is to blame with the
django_openstack_auth module tha t is currently happening) that addressed
your specific issue is:

I have proposed a fix for Keystone that would revert the PKIZ default:

Depending on the fixes upcoming for the django_openstack_auth module, it
may make sense to temporarily revert the PKIZ provider default until we
can solve the issues with the django auth module and horizon when PKIZ is
enabled. If this review is not needed
 based on how the horizon issues are corrected, it will be abandoned.

I think this is also showing some gaps in our testing, notably that the
django_openstack_auth module isn't being exercised on the integration
tests. I'll aim to hit up Horizon team and work with them and the QA folks
to make sure we cover this gap in the


On Saturday, June 21, 2014, Mike Spreitzer <mspreitz at us.ibm.com> wrote:

Since Friday I have been getting this misbehavior: enter username and
password, hit login, and it shows you the login page again.

Sean Dague --- [openstack-dev] horizon failing on icehouse 100%, currently
blocking all patches ---

From:"Sean Dague" <sean at dague.net>To"openstack-dev"
<openstack-dev at lists.openstack.org>Date:Sat, Jun 21, 2014
12:54Subject[openstack-dev] horizon failing on icehouse 100%, currently
blocking all patches________________________________________

Horizon in icehouse is now 100% failing

 [Sat Jun 21 16:17:35 2014] [error] Internal Server Error: /
[Sat Jun 21 16:17:35 2014] [error] Traceback (most recent call last):
[Sat Jun 21 16:17:35 2014] [error]   File
line 112, in get_response
[Sat Jun 21 16:17:35 2014] [error]     response =
wrapped_callback(request, *callback_args, **callback_kwargs)
[Sat Jun 21 16:17:35 2014] [error]   File
36, in inner_func
[Sat Jun 21 16:17:35 2014] [error]     response = func(*args, **kwargs)
[Sat Jun 21 16:17:35 2014] [error]   File
line 35, in splash
[Sat Jun 21 16:17:35 2014] [error]     form = views.Login(request)
[Sat Jun 21 16:17:35 2014] [error] AttributeError: 'module' object has
no attribute 'Login'

This suspiciously times with django_openstack_auth 1.1.6 being released.

Because this breaks smoke tests on icehouse, it means that any project
with upgrade testing fails.

Would be great if horizon folks code make this a top priority. Also, in
future, releasing new library versions on a saturday maybe best avoided. :)


Sean Dague

OpenStack-dev mailing list
OpenStack-dev at lists.openstack.org

More information about the OpenStack-dev mailing list