KeystoneRequires.ep_changed() now returns a dictionary rather than
json. As a result KeystoneRequires.endpoint_checksums now throws an
exception when it tries to decode the return from ep_changed.
Change-Id: I440104679c900ce8b67ff1fca1d0ce003e5f0ef4
The new keystone-k8s operator uses the application data bag and
more up-to-date key names for endpoint and authentication information.
Check for this information and then fallback to the existing
keystone charm unit data bag data set if not found.
Update register_endpoints to also provide new application data
bag JSON encoded data when this method is called from a lead
unit. This relies on the type and description of the endpoint
being provided which will require a charm change on adoption.
Change-Id: I921d173c64b12c35f5ffc17270a0fc2bb83891c4
The RelationBase class has been deprecated for some time and
provides no support for interaction with the application data
bag.
Migrate requires interface to Endpoint base class and refactor
as needed.
Change-Id: I82fe7df6c7c3658dd334a830442f1dcbd1e7d7e4
The service_type needs to be added to keystone_authtoken
for access rules (application credentials) to work so it
is now a required parameter.
Related-Bug: #1965967
Change-Id: Ic90de9de13ad2728b9ce9de075c03f7854c417ca
A charm joined to keystone via the identity-service relation can
now specify additional roles that can be granted to admin. This
is done by setting the relation data key `add_role_to_admin` the
value is a comma seperated list of roles that should be granted
to admin.
Change-Id: I5495c350c7ac65f8a67125734dff368577c983f4
Most reactive charms react on identity-service.available but the
current interface distinguishes between available and available.auth. It
is somewhat assumed by most charms that identity-service.available is
equivalent to identity-service.available.auth, as what charms are
concerned with is the ability to authenticate against the cloud.
Collapse the difference between identity-service.available and
identity-service.available.auth.
Continue to set identity-service.available.auth for any charms that may
rely on it.
Change-Id: I494feea5f3ef8706140ce712b1e025e52b0dfbd1
Closes-Bug: #1818113
The mock third party library was needed for mock support in py2
runtimes. Since we now only support py36 and later, we can use the
standard lib unittest.mock module instead.
Note that https://github.com/openstack/charms.openstack is used during tests
and he need `mock`, unfortunatelly it doesn't declare `mock` in its
requirements so it retrieve mock from other charm project (cross dependency).
So we depend on charms.openstack first and when
Ib1ed5b598a52375e29e247db9ab4786df5b6d142 will be merged then CI
will pass without errors.
Depends-On: Ib1ed5b598a52375e29e247db9ab4786df5b6d142
Change-Id: I8ca08483bf40a3092275d5dd0458951a64f239a1
The keystone charm may provide ID information about the admin
user, project and domain.
These are used to build trusts between service accounts and the
main cloud admin account to allow priviledge escalation for
cloud applications (such as backups).
Change-Id: I9c7a9a4d218059de2ad24c8481fd263f8125a8e3
Add support for recent changes to keystone to allow consuming
charms to request notification about endpoint changes.
Change-Id: Icacca3445980cdb866cb0dad90b288ce96e8c460
- removing sitepackages in tox.ini to avoid test env pollution
- skip_missing_interpreters in tox.ini set to False to avoid false
positives by skipping missing interpreters.
Change-Id: Ib98bc85fb41b4504bf239783d36c5290df863abd
This is a mechanically generated patch to ensure unit testing is in place
for all of the Tested Runtimes for Train.
See the Train python3-updates goal document for details:
https://governance.openstack.org/tc/goals/train/python3-updates.html
Note that python35-charm-jobs is retained since this charm is supported
on Xenial.
Change-Id: I603dbbd3a7dd9061f0fe91928895f4ad20a6a113
Story: #2005924
Task: #34228
service_domain_id might be required by dependant charms
such as aodh and should be exposed as an accessor attribute.
Partial-Bug: #1831181
Change-Id: Idae7aec048b9203d2b1a75da8d68cf97271f1b53
Signed-off-by: Jorge Niedbalski <jorge.niedbalski@canonical.com>
CI is broken due to a bug [0] reported
in testr.
Following approach used in keystone and switching
to stestr instead of testr.
[0] https://review.opendev.org/#/c/662582/
[1] d1e3a7845d
Change-Id: I108b4d7b4c4f20f4b077077528f07f9447747a48
Signed-off-by: Jorge Niedbalski <jorge.niedbalski@canonical.com>
This technique was borrowed from the tox "cover" environment in
openstack/nova's tox.ini. This leverages the fact that stestr lets
you override the python executable via the PYTHON environment
variable. Doing this allows us to easily generate coverage for our
unit tests.
An important caveat is that this does not provide any coverage for
tests via zaza, amulet, etc. It is purely focused on the unit tests.
Note that this replaces the previous .coveragerc; coverage
configuration is instead pulled from tox.ini.
Change-Id: I2e1964927b44aeef8135350390968f98bf77f8ac
When passing ``requested_roles`` down the ``identity-service``
relation the Keystone charm will create the listed roles for you.
Useful for charm authors implementing charms with specific role
requirements.
Change-Id: I7c1eedb1e78ffc53ac3e0df81f6b52358dd8dfa5
Closes-Bug: #1813602
We want to default to running all tox environments under python 3, so
set the basepython value in each environment.
We do not want to specify a minor version number, because we do not
want to have to update the file every time we upgrade python.
We do not want to set the override once in testenv, because that
breaks the more specific versions used in default environments like
py35 and py36.
Change-Id: If1e380edabb8db57486a8d9c6ca7616247087505
Signed-off-by: Doug Hellmann <doug@doughellmann.com>
Adding code for supporting service_domain.
Some charms need to get service_domain
from keystone relation.
Change-Id: Ic9a8ae558482cda8f28de8ff465dab15fc85f9e3
This is a mechanically generated patch to complete step 1 of moving
the zuul job settings out of project-config and into each project
repository.
Because there will be a separate patch on each branch, the branch
specifiers for branch-specific jobs have been removed.
Because this patch is generated by a script, there may be some
cosmetic changes to the layout of the YAML file(s) as the contents are
normalized.
See the python3-first goal document for details:
https://governance.openstack.org/tc/goals/stein/python3-first.html
Change-Id: I8912b06ec61bbebcee14f3cd1ac0a14acbd97ac5
Story: #2002586
Task: #24317
This adds back in the unit tests that were removed due to charm-tools
issue #192 [1] where the ignore option was 'ignored' by charm-tools.
This meant that the unit tests could not be ignored, and they ended
up in the built charm which then failed.
[1] https://github.com/juju/charm-tools/issues/192
Change-Id: Idbde830cac9ddc8ee3622fa6b7fd8a88e81e2811
The api version that keystone is uing is advertised via the
api_version key in the identity-service relation but the interface
does not currently set it as a property.
Change-Id: I3b0ee1f22d1c6afee54e1faf315400ca1f8adf77
Add required configuration files and generally update the interface
after move to OpenStack git/gerrit.
Change-Id: Id8717e9764187e2f16e9a2a3b6007779b7fb6468
This adds unit tests to the interface-keystone and provides ostestr
support, and a makefile to allow easy 'make lint' and 'make test'
commands. All tests are performed in tox environments. At present this
is py27.