Memcache setup missing in shibboleth2.xml
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Fix Released
|
Low
|
Russell Tweed |
Bug Description
There is no memcache session added in /etc/shibboleth
The impact of this is that federated login will fail randomly if you don't end up in the same keystone when you initiate login and when you are returning from the IDP.
This is the part missing from the config file /etc/shibboleth
The IP:s of the memcache servers in the Hosts section should be replaced with the appropriate values.
<OutOfProcess>
</OutOfProcess>
<StorageService type="MEMCACHE" id="mc" prefix=
<Hosts>
</Hosts>
</StorageSe
<StorageService type="MEMCACHE" id="mc-ctx" prefix=
<Hosts>
</Hosts>
</StorageSe
<SessionCache type="StorageSe
<ReplayCache StorageService=
<ArtifactMap StorageService="mc" artifactTTL="180"/>
Changed in openstack-ansible: | |
status: | New → Incomplete |
status: | Incomplete → Confirmed |
importance: | Undecided → Low |
tags: | added: low-hanging-fruit |
Changed in openstack-ansible: | |
assignee: | nobody → Russell Tweed (russell-tweed) |
Changed in openstack-ansible: | |
assignee: | Russell Tweed (russell-tweed) → Jesse Pretorius (jesse-pretorius) |
Changed in openstack-ansible: | |
assignee: | Jesse Pretorius (jesse-pretorius) → Russell Tweed (russell-tweed) |
I didn't know it was possible, good thing! Better than fine tuning the LB parameters IMO.