Ask Your Question
0

magnum unable to authorise request in Openstack queens

asked 2020-04-24 00:22:37 -0500

jayeshc gravatar image

I have Openstack queens setup. I have followed steps in openstack intsllation guide. https://docs.openstack.org/magnum/que... But when I try to verify steps its failing as magnum-api shows errors default domain not found. All other services working as expected.

2020-04-24 10:21:45.758 169545 WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Could not find domain: default. (Disable insecure_debug mode to suppress these details.)", "code": 401, "title": "Unauthorized"}}: Unauthorized: Could not find domain: default. (Disable insecure_debug mode to suppress these details.) (HTTP 401) (Request-ID: req-15867afa-7a4c-4e69-9b15-9a7c287a5b11)
2020-04-24 10:21:45.786 169545 WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Could not find domain: default. (Disable insecure_debug mode to suppress these details.)", "code": 401, "title": "Unauthorized"}}: Unauthorized: Could not find domain: default. (Disable insecure_debug mode to suppress these details.) (HTTP 401) (Request-ID: req-6b837f1c-b7bb-472c-b6af-110aace8d996)
2020-04-24 10:21:45.786 169545 CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Identity server rejected authorization necessary to fetch token data: ServiceError: Identity server rejected authorization necessary to fetch token data
2020-04-24 10:21:45.788 169545 INFO werkzeug [-] 10.43.10.8 - - [24/Apr/2020 10:21:45] "GET /v1/mservices HTTP/1.1" 503 -

Even for any api in magnum it shows 503 service not available. My magnum.conf file as follows :

root@controller1:~# egrep "^\[|^[a-zA-Z0-9]" /etc/magnum/magnum.conf
[DEFAULT]
transport_url = rabbit://openstack:########@controller:5672
pybasedir = /usr/lib/python2.7/dist-packages/magnum
bindir = /usr/bin
state_path = /var/lib/magnum
host = controller1
[api]
port = 9511
host = 0.0.0.0
[barbican_client]
[certificates]
cert_manager_type = x509keypair
[cinder]
[cinder_client]
region_name = RegionOne
[cluster]
[cluster_heat]
[cluster_template]
[conductor]
topic = magnum-conductor
conductor_life_check_timeout = 4
[cors]
[database]
connection = mysql+pymysql://magnum:########@controller/magnum
[docker]
[docker_registry]
[drivers]
[glance_client]
[heat_client]
[keystone_auth]
[keystone_authtoken]
www_authenticate_uri = http://controller:5000
auth_uri = http://controller:5000
auth_version = v3
auth_protocol = http
memcached_servers = controller:11211
project_domain_id = default
project_name = service
user_domain_id = default
password = ########
username = magnum
auth_url = http://controller:35357
auth_type = password
admin_user = magnum
admin_password = ########
admin_tenant_name = service
[magnum_client]
[matchmaker_redis]
[neutron_client]
[nova_client]
[oslo_concurrency]
lock_path = /var/lock/magnum
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
driver = messaging
[oslo_messaging_rabbit]
rabbit_host = localhost
rabbit_port = 5672
rabbit_userid = guest
rabbit_password = 
[oslo_messaging_zmq]
[oslo_policy]
[profiler]
[quotas]
[trust]
trustee_domain_name = magnum
trustee_domain_admin_name = magnum_domain_admin
trustee_domain_admin_password = ########
trustee_keystone_interface = public
[x509]

When I try to list magnum service list getting following error

openstack coe service list --debug
REQ: curl -g -i -X GET http://controller:9511/v1/mservices -H "X-Auth-Token: {SHA1}dceee385a0529cf587d444ae52f779103a42a186" -H "Content-Type: application/json" -H "Accept: application/json" -H "User-Agent: None"
Starting new HTTP connection (1): controller
http://controller:9511 "GET /v1/mservices HTTP/1.1" 503 170
RESP: [503] content-length: 170 content-type: application/json x-openstack-request-id: req-d0df3806-5860-477e-a56f-63101c374623 server: Werkzeug/0.10.4 Python/2.7.12 date: Fri, 24 Apr 2020 05:18:17 GMT connection: keep-alive
RESP BODY: {"message": "The server is currently unavailable. Please try again at a later time.

\n\n\n", "code": "503 Service Unavailable", "title": "Service Unavailable"} GET call to container-infra for http://controller:9511/v1/mservices used request id req-d0df3806-5860-477e-a56f-63101c374623 'errors' Traceback (most recent call last): File "/usr/lib/python2.7/dist-packages/cliff/app.py", line 400, in run_subcommand result = cmd.run(parsed_args) File "/usr ...
(more)
edit retag flag offensive close merge delete

Comments

You configure project_domain_id = default and user_domain_id = default. The error message is "Could not find domain: default". Check the default domain's ID. It might be Default (upper-case D) or perhaps something else.

Bernd Bausch gravatar imageBernd Bausch ( 2020-04-24 01:02:41 -0500 )edit

No its same default in lowercase

root@controller1:~# openstack domain list| grep -i default

| f84b97c31204427293fe4d9697484986 | default | True | Default Domain |

root@controller1:~#

jayeshc gravatar imagejayeshc ( 2020-04-24 01:38:12 -0500 )edit

1 answer

Sort by ยป oldest newest most voted
1

answered 2020-04-24 04:19:03 -0500

updated 2020-04-24 04:19:36 -0500

The ID of the domain is f84b97c31204427293fe4d9697484986, the name is default. Magnum configures an ID of default. There is no domain with an ID of default.

edit flag offensive delete link more

Comments

Thanks Bernd, That worked. :)

jayeshc gravatar imagejayeshc ( 2020-04-24 04:32:39 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2020-04-24 00:22:37 -0500

Seen: 105 times

Last updated: Apr 24