Skip to content

Set service_type in [keystone_authtoken] for access rule validation#487

Open
Deydra71 wants to merge 1 commit into
openstack-k8s-operators:mainfrom
Deydra71:service-type-access-rules
Open

Set service_type in [keystone_authtoken] for access rule validation#487
Deydra71 wants to merge 1 commit into
openstack-k8s-operators:mainfrom
Deydra71:service-type-access-rules

Conversation

@Deydra71

@Deydra71 Deydra71 commented Jun 25, 2026
edited by openshift-ci Bot
Loading

Copy link
Copy Markdown
Contributor

Without service_type configured, keystonemiddleware cannot validate application credentials with custom access rules, causing HTTP 401 for end users.

Closes: OSPRH-22365

@openshift-ci openshift-ci Bot requested review from karelyatin and omersch381 June 25, 2026 08:53
@beagles

beagles commented Jun 25, 2026

Copy link
Copy Markdown
Collaborator

/lgtm

@openshift-ci openshift-ci Bot added the lgtm label Jun 25, 2026
@beagles

beagles commented Jun 25, 2026

Copy link
Copy Markdown
Collaborator

small nit - there is a functional test around test/functional/designateapi_controller_test.go:190 you could add a check for to help ensure this doesn't go missing in the future

@Deydra71

Deydra71 commented Jun 25, 2026

Copy link
Copy Markdown
Contributor Author

@beagles done, thanks!

@Deydra71
Set service_type in [keystone_authtoken] for access rule validation
cace3bc 
Without service_type configured, keystonemiddleware cannot validate
application credentials with custom access rules, causing HTTP 401
for end users.

Closes: OSPRH-22365

Signed-off-by: Veronika Fisarova <vfisarov@redhat.com>
@Deydra71 Deydra71 force-pushed the service-type-access-rules branch from 1b23555 to cace3bc Compare June 25, 2026 12:50
@openshift-ci openshift-ci Bot removed the lgtm label Jun 25, 2026
@openshift-ci

openshift-ci Bot commented Jun 25, 2026

Copy link
Copy Markdown
Contributor

New changes are detected. LGTM label has been removed.

@openshift-ci

openshift-ci Bot commented Jun 25, 2026

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Deydra71
Once this PR has been reviewed and has the lgtm label, please ask for approval from beagles. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@karelyatin karelyatin Awaiting requested review from karelyatin
@omersch381 omersch381 Awaiting requested review from omersch381

At least 1 approving review is required to merge this pull request.

Assignees

@beagles beagles

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Deydra71 @beagles