[keystone] How to create a session using trust-scoped token
Lingxian Kong
anlin.kong at gmail.com
Thu May 7 01:38:12 UTC 2020
Thanks for your reply, Kristi. I will try and get back to you if needed.
---
Lingxian Kong
Senior Software Engineer
Catalyst Cloud
www.catalystcloud.nz
On Thu, May 7, 2020 at 11:30 AM Nikolla, Kristi <knikolla at bu.edu> wrote:
> Hi Lingxian,
>
> The issue here is that keystoneauth usually treats all authentication
> methods the same, and uses them to authenticate and get another token. As
> you see the error in your log, trust scoped tokens can't create another
> token, so the authentication fails.
>
> Some clients provide a mechanism for you to input the token and
> endpoint_url directly without requiring keystoneauth. See below and try
> that.
>
>
> https://github.com/openstack/python-neutronclient/blob/master/neutronclient/client.py#L61-L62
>
> Best,
> Kristi
>
> > On May 6, 2020, at 6:37 PM, Lingxian Kong <anlin.kong at gmail.com> wrote:
> >
> > Hi keystone team,
> >
> > I met with an issue that can't perform openstack operations using
> openstack client lib by providing a trust scoped token. However, I can use
> that token to send HTTP request directly. Here is my code and the error
> message, http://dpaste.com/1N6AX0R
> >
> > I asked several times in #openstack-keystone IRC channel, but got no
> response.
> >
> > ---
> > Lingxian Kong
> > Senior Software Engineer
> > Catalyst Cloud
> > www.catalystcloud.nz
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20200507/262609d8/attachment.html>
More information about the openstack-discuss
mailing list