Fuel for OpenStack

[nova] AuthToken is marked invalid in memcache

Bug #1256893 reported by Nadya Privalova on 2013-12-02

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Fuel for OpenStack	Opinion	Medium	Sergey Vasilenko	Fuel for OpenStack 4.0

Bug Description

Issue is related to nova in case of using REST (that includes Horizon): it's impossible to use auth-token several times.

Logs:

Nov 13 06:58:49 controller-1461 nova keystoneclient.middleware.auth_token DEBUG Token validation failure.
Traceback (most recent call last):
  File "/usr/lib/python2.6/site-packages/keystoneclient/middleware/auth_token.py", line 684, in _validate_u
ser_token
    cached = self._cache_get(token_id)
  File "/usr/lib/python2.6/site-packages/keystoneclient/middleware/auth_token.py", line 898, in _cache_get
    raise InvalidUserToken('Token authorization failed')
InvalidUserToken: Token authorization failed
Nov 13 06:58:49 controller-1461 nova keystoneclient.middleware.auth_token DEBUG Marking token 211b590c4ba94d62a3981fbf91e934dc as unauthorized in memcache

Issue was fixed after the following was added to [keystone_authtoken] section in nova.conf to all controller's nodes:

token_cache_time=300 -> I think it may be skipped because it's default value
memcache_security_strategy=ENCRYPT
memcache_secret_key=hjhs445

memcache_secret_key is the same on all controllers.

Vladimir Kuklin (vkuklin) on 2013-12-02

Changed in fuel:
assignee:	nobody → Zipfer (ivanzipfer)
milestone:	none → 4.0
importance:	Undecided → Medium

Sergey Vasilenko (xenolog) on 2013-12-02

Changed in fuel:
assignee:	Zipfer (ivanzipfer) → Sergey Vasilenko (xenolog)

Revision history for this message

Ivan Ponomarev (ivanzipfer) wrote on 2013-12-03:

can't reproduce for 4.0 .
it is not 4.0 fuel version it is 3.0 and doesn't have step to reproduce in current time

Revision history for this message

Vladimir Kuklin (vkuklin) wrote on 2013-12-03:

Waiting for more clear specification of reproducing steps.

Changed in fuel:
status:	New → Incomplete

Sergey Vasilenko (xenolog) on 2013-12-04

Changed in fuel:
status:	Incomplete → Won't Fix
status:	Won't Fix → Triaged
status:	Triaged → Opinion

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.