OpenStack Searchlight

Service client auth in listener

Bug #1471878 reported by Steve McLellan on 2015-07-06

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Searchlight	Fix Released	Medium	Steve McLellan	OpenStack Searchlight 0.1.0 "liberty"

Bug Description

To avoid re-authorizing on every use of service clients (nova, glance etc) elasticsearch/plugins/openstack_clients.py attaches an authorized instance of each client to the client_cache dictionary. Over time, keystone tokens will become invalid and this will result in 401s once the listener's been running for a while. I'm filing this as a reminder to myself to a) confirm it happens (it was a problem with the kilo summit demo code) and b) fix it.

There's a decorator in openstack_clients 'clear_cache_on_unauthorized' that should be attached to the serialize_xyz functions in each plugin's __init__. I'm also ok with a different approach to the problem.

Steve McLellan (sjmc7) on 2015-07-09

Changed in searchlight:
assignee:	nobody → Steve McLellan (sjmc7)

Steve McLellan (sjmc7) on 2015-07-31

Changed in searchlight:
importance:	Undecided → Medium
status:	New → In Progress

Revision history for this message

Travis Tripp (travis-tripp) wrote on 2015-09-18:

Merged here: https://review.openstack.org/#/c/200225/

Changed in searchlight:
milestone:	none → liberty-rc1
status:	In Progress → Fix Committed

Travis Tripp (travis-tripp) on 2015-10-14

Changed in searchlight:
status:	Fix Committed → Fix Released

Travis Tripp (travis-tripp) on 2015-10-14

Changed in searchlight:
milestone:	liberty-rc1 → 0.1.0.0

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.