Ask Your Question
0

How to configure service user token for a long run API request

asked 2019-08-07 06:25:44 -0500

rio-am gravatar image

Hi, I am running Queens release. I have kubernetes installed over openstack and have issues while attaching/detaching volumes I get the 401 Unauthorized error. I found that it is related to token expired and can be solved with using service user token https://docs.openstack.org/nova/rocky/admin/support-compute.html#user-token-times-out-during-long-running-operations (https://docs.openstack.org/nova/rocky...) I tried all sort of configuration but still get the 401 Unauthorized error. Is there a clear config guide to use for the service user token ? Thanks you

edit retag flag offensive close merge delete

2 answers

Sort by ยป oldest newest most voted
0

answered 2019-08-08 05:55:06 -0500

rio-am gravatar image

I am aware of this option but we tried to use the service user token as explained https://docs.openstack.org/nova/rocky/admin/support-compute.html#user-token-times-out-during-long-running-operations (here) I can see in the control nova api log that X-Service-Token is sent with the X-Auth-Token, but in the compute nova compute log i can see only the X-Auth-Token is sent without service token.

edit flag offensive delete link more
0

answered 2019-08-08 05:37:39 -0500

You can change the expiry duration in the keystone.conf file.

[token] 
expiration=8640000

This will cause the token to persist for more longer period of time.

Hope that helps !!

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2019-08-07 06:25:44 -0500

Seen: 35 times

Last updated: Aug 08