Merge "Fix radosgw keystone authentication"

2016-08-18 16:12:04 +00:00 · 2016-08-18 16:12:04 +00:00 · c7251d938b
parent 956318d719 7e974aeb34
commit c7251d938b
1 changed files with 6 additions and 1 deletions
--- a/devstack/lib/ceph
+++ b/devstack/lib/ceph
@ -466,7 +466,9 @@ function _configure_ceph_rgw {
        rgw print continue = false
        rgw frontends = civetweb port=${CEPH_RGW_PORT}
        rgw keystone url = http://${SERVICE_HOST}:35357
-        rgw keystone admin token = ${SERVICE_TOKEN}
+	rgw keystone admin user = radosgw
+	rgw keystone admin password = $SERVICE_PASSWORD
+	rgw keystone admin tenant = $SERVICE_PROJECT_NAME
        rgw keystone accepted roles = Member, _member_, admin
        rgw s3 auth use keystone = true
        nss db path = ${dest}/nss
@ -505,6 +507,9 @@ function configure_ceph_embedded_rgw {
    # Let keystone generate the certs, rgw needs these.
    keystone-manage pki_setup --rebuild

+    # Create radosgw service user with admin privileges
+    create_service_user "radosgw" "admin"
+
    # radosgw needs to access keystone's revocation list
    sudo mkdir -p ${dest}/nss
    sudo openssl x509 -in /etc/keystone/ssl/certs/ca.pem -pubkey | \