[Openstack] [keystone] can't not use file-based backend for catalog

Remo Mattei remo at italy1.com
Thu Mar 6 02:42:51 UTC 2014 

Just in case here is the syntax 

keystone-manage db_sync

On Mar 5, 2014, at 6:26 PM, Li, Chen <chen.li at intel.com> wrote:

> That’s the most strange part.
>  
> If I’m using
>     [catalog]
>     driver = keystone.catalog.backends.sql.Catalog
>  
> Everything is fine.
>  
> While I’m using file-based backend, even I’m using
>     env |grep SERVICE
>     SERVICE_ENDPOINT=http://host-keystone:35357/v2.0
>     SERVICE_TOKEN=ADMIN
>  
> I get nothing from command “keystone endpoint-list”….
>  
>  
> From: Remo Mattei [mailto:remo at italy1.com] 
> Sent: Thursday, March 06, 2014 10:22 AM
> To: Li, Chen
> Cc: openstack at lists.openstack.org
> Subject: Re: [Openstack] [keystone] can't not use file-based backend for catalog
>  
> Well looks like it does send the endpoints back to you from keystone. but looks like it’s using a token. 
> can you try a different user? Not sure if that user had access to the endpoints. Just a suggestions. 
>  
> Remo
> On Mar 5, 2014, at 6:15 PM, Li, Chen <chen.li at intel.com> wrote:
> 
> 
>  
> keystone --debug endpoint-list
>  
> REQ: curl -i -X POST http://host-keystone:5000/v2.0/tokens -H "Content-Type: application/json" -H "User-Agent: python-keystoneclient"
> REQ BODY: {"auth": {"tenantName": "test", "passwordCredentials": {"username": "lichen", "password": "lichen"}}}
>  
> RESP: [200] {'date': 'Thu, 06 Mar 2014 02:14:28 GMT', 'content-type': 'application/json', 'content-length': '1897', 'vary': 'X-Auth-Token'}
> RESP BODY: {"access": {"token": {"issued_at": "2014-03-06T02:14:28.417502", "expires": "2014-03-07T02:14:28Z", "id": "1a4f03fbec6a41ddbff76afe9d238f83", "tenant": {"description": null, "enabled": true, "id": "1e57be810f854bcdb73901567140ac48", "name": "test"}}, "serviceCatalog": [{"endpoints": [{"adminURL": "http://host-cinder:8776/v1/1e57be810f854bcdb73901567140ac48", "region": "RegionOne", "publicURL": "http://host-cinder:8776/v1/1e57be810f854bcdb73901567140ac48", "internalURL": "http://host-cinder:8776/v1/1e57be810f854bcdb73901567140ac48"}], "endpoints_links": [], "type": "volume", "name": "Volume Service"}, {"endpoints": [{"adminURL": "http://host-glance:9292/v1", "region": "RegionOne", "publicURL": "http://host-glance:9292/v1", "internalURL": "http://host-glance:9292/v1"}], "endpoints_links": [], "type": "image", "name": "Image Service"}, {"endpoints": [{"adminURL": "http://host-nova:8774/v1.1/1e57be810f854bcdb73901567140ac48", "region": "RegionOne", "publicURL": "http://host-nova:8774/v1.1/1e57be810f854bcdb73901567140ac48", "internalURL": "http://host-nova:8774/v1.1/1e57be810f854bcdb73901567140ac48"}], "endpoints_links": [], "type": "compute", "name": "Compute Service"}, {"endpoints": [{"adminURL": "http://host-neutron:9696/", "region": "RegionOne", "publicURL": "http://host-neutron:9696/", "internalURL": "http://host-neutron:9696/"}], "endpoints_links": [], "type": "network", "name": "Network Service"}, {"endpoints": [{"adminURL": "http://host-keystone:35357/v2.0", "region": "RegionOne", "publicURL": "http://host-keystone:5000/v2.0", "internalURL": "http://host-keystone:5000/v2.0"}], "endpoints_links": [], "type": "identity", "name": "Identity Service"}], "user": {"username": "lichen", "roles_links": [], "id": "dad121e464174060a4eb46c5fed019bf", "roles": [{"name": "admin"}], "name": "lichen"}, "metadata": {"is_admin": 0, "roles": ["1c3535acf43345acaa23b6b0c6955dfd"]}}}
>  
> REQ: curl -i -X GET http://host-keystone:35357/v2.0/endpoints -H "User-Agent: python-keystoneclient" -H "X-Auth-Token: 1a4f03fbec6a41ddbff76afe9d238f83"
> RESP: [200] {'date': 'Thu, 06 Mar 2014 02:14:28 GMT', 'content-type': 'application/json', 'content-length': '17', 'vary': 'X-Auth-Token'}
> RESP BODY: {"endpoints": []}
>  
>  
>  
> From: Remo Mattei [mailto:remo at italy1.com] 
> Sent: Thursday, March 06, 2014 10:13 AM
> To: Li, Chen
> Cc: openstack at lists.openstack.org
> Subject: Re: [Openstack] [keystone] can't not use file-based backend for catalog
>  
> Try to add —debug and see what it says..
>  
> Ciao
>  
> On Mar 5, 2014, at 6:08 PM, Li, Chen <chen.li at intel.com> wrote:
> 
> 
> 
> Hi list,
>  
> I’m working under CentOS 6.4 + Havana.
>  
> I want to use the file based backend for keystone catalog.
> But, after I configured that, when I run command “keystone service list” and “keystone endpoint-list”, I get nothing.
>  
> Anyone know why this happened ???
>  
> I used to be successfully to this on Grizzly.
>  
>  
> Thanks.
> -chen
>  
> Here is my /etc/keystone/keystone.conf:
>         [DEFAULT]
>          [sql]
>         connection = mysql://keystone:keystone@host-db/keystone
>  
>          [identity]
>  
>          [credential]
>  
>          [trust]
>  
>          [os_inherit]
>  
>          [catalog]
>         driver = keystone.catalog.backends.templated.TemplatedCatalog
>         template_file = /etc/keystone/default_catalog.templates
>  
>          [endpoint_filter]
>  
>          [token]
>         driver = keystone.token.backends.memcache.Token
>  
>          [cache]
>          [policy]
>          [ec2]
>          [assignment]
>          [oauth1]
>          [ssl]
>          [signing]
>         token_format = UUID
>  
>          [ldap]
>  
>          [auth]
>         methods = external,password,token,oauth1
>         password = keystone.auth.plugins.password.Password
>         token = keystone.auth.plugins.token.Token
>         oauth1 = keystone.auth.plugins.oauth1.OAuth
>  
>          [paste_deploy]
>  
>  
>  
> Here is my /etc/keystone/default_catalog.templates:
> catalog.RegionOne.identity.publicURL = http://host-keystone:$(public_port)s/v2.0
> catalog.RegionOne.identity.adminURL = http://host-keystone:$(admin_port)s/v2.0
> catalog.RegionOne.identity.internalURL = http://host-keystone:$(public_port)s/v2.0
> catalog.RegionOne.identity.name = Identity Service
>  
> catalog.RegionOne.compute.publicURL = http://host-nova:$(compute_port)s/v1.1/$(tenant_id)s
> catalog.RegionOne.compute.adminURL = http://host-nova:$(compute_port)s/v1.1/$(tenant_id)s
> catalog.RegionOne.compute.internalURL = http://host-nova:$(compute_port)s/v1.1/$(tenant_id)s
> catalog.RegionOne.compute.name = Compute Service
>  
> catalog.RegionOne.volume.publicURL = http://host-cinder:8776/v1/$(tenant_id)s
> catalog.RegionOne.volume.adminURL = http://host-cinder:8776/v1/$(tenant_id)s
> catalog.RegionOne.volume.internalURL = http://host-cinder:8776/v1/$(tenant_id)s
> catalog.RegionOne.volume.name = Volume Service
>  
>  
> catalog.RegionOne.image.publicURL = http://host-glance:9292/v1
> catalog.RegionOne.image.adminURL = http://host-glance:9292/v1
> catalog.RegionOne.image.internalURL = http://host-glance:9292/v1
> catalog.RegionOne.image.name = Image Service
>  
> catalog.RegionOne.network.publicURL = http://host-neutron:9696/
> catalog.RegionOne.network.adminURL = http://host-neutron:9696/
> catalog.RegionOne.network.internalURL = http://host-neutron:9696/
> catalog.RegionOne.network.name = Network Service
>  
> _______________________________________________
> Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
> Post to     : openstack at lists.openstack.org
> Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
> 
> 
>  
> !DSPAM:1,5317db11233031001746282!
>  
> !DSPAM:1,5317dce4236173434170783!

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20140305/072f29b0/attachment.html>

More information about the Openstack mailing list