ERROR keystonemiddleware.auth_token [-] Bad response code while validating token: 400

Heat认证配置错误
最新推荐文章于 2024-11-21 18:18:46 发布
最新推荐文章于 2024-11-21 18:18:46 发布
阅读量4.1k 收藏
点赞数
CC 4.0 BY-SA版权
分类专栏: Openstack RHOSP
本文为博主原创文章,未经博主允许不得转载。
本文链接:https://blog.youkuaiyun.com/u011446736/article/details/79229440
解决Heat服务中因认证配置不当导致的错误响应问题,通过调整配置文件中的认证参数并重启相关服务来恢复正常。
2018-02-01 15:29:13.453 60498 WARNING keystonemiddleware.auth_token [-] Use of the auth_admin_prefix, auth_host, auth_port, auth_protocol, identity_uri, adm
in_token, admin_user, admin_password, and admin_tenant_name configuration options is deprecated in favor of auth_plugin and related options and may be removed in a future release.2018-02-01 15:29:13.454 60498 WARNING keystonemiddleware.auth_token [-] Configuring admin URI using auth fragments. This is deprecated, use 'identity_uri' i
nstead.2018-02-01 15:29:13.456 60498 INFO heat.api [-] Starting Heat REST API on 0.0.0.0:8004
2018-02-01 15:29:13.459 60498 INFO heat.common.wsgi [-] Starting 2 workers
2018-02-01 15:29:13.475 60498 INFO heat.common.wsgi [-] Started child 60560
2018-02-01 15:29:13.480 60498 INFO heat.common.wsgi [-] Started child 60564
2018-02-01 15:30:14.498 60564 ERROR keystonemiddleware.auth_token [-] Bad response code while validating token: 400
2018-02-01 15:30:14.512 60564 WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Expecting to find username or userId in pa
sswordCredentials - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error.", "code": 400, "title": "Bad Request"}}2018-02-01 15:30:14.512 60564 CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Failed to fetch token data from identity server
2018-02-01 15:30:27.613 60564 ERROR keystonemiddleware.auth_token [-] Bad response code while validating token: 400
2018-02-01 15:30:27.615 60564 WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Expecting to find username or userId in pa
sswordCredentials - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error.", "code": 400, "title": "Bad Request"}}2018-02-01 15:30:27.616 60564 CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Failed to fetch token data from identity server
2018-02-01 15:31:00.923 60564 ERROR keystonemiddleware.auth_token [-] Bad response code while validating token: 400
2018-02-01 15:31:00.924 60564 WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Expecting to find username or userId in pa
sswordCredentials - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error.", "code": 400, "title": "Bad Request"}}2018-02-01 15:31:00.925 60564 CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Failed to fetch token data from identity server


安装heat之后,dashboard上报错 Error: Unable to retrieve stack list. 

log 显示:

ERROR keystonemiddleware.auth_token [-] Bad response code while validating token: 400

WARNING keystonemiddleware.auth_token [-] Identity response: {"error": {"message": "Expecting to find username or userId in passwordCredentials - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error.", "code": 400, "title": "Bad Request"}}2018-02-01 15:31:00.925 60564 CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Failed to fetch token data from identity server


解决方法:

之前的heat 认证配置是:

[keystone_authtoken]
auth_host = 192.168.179.140
auth_port = 35357
auth_protocol = http
auth_uri = http://192.168.179.140:5000/v2.0
signing_dir = /tmp/keystone-signing-heat

改成如下配置:

[keystone_authtoken]
admin_tenant_name = services
admin_user = heat
admin_password= redhat
auth_host = 192.168.179.140
auth_port = 35357
auth_protocol = http
auth_uri = http://192.168.179.140:5000/v2.0
signing_dir = /tmp/keystone-signing-heat


重启服务:

# systemctl restart openstack-heat-api.service openstack-heat-api-cfn.service openstack-heat-engine.service


Rasa课程、Rasa培训、Rasa面试系列 金融银行案例Bot Step By Step学习
大模型与Agent智能体
03-06 986
Rasa课程、Rasa培训、Rasa面试系列 金融银行案例Bot 测试故事 打招呼场景: - rule: greet steps: - intent: greet - action: utter_greet - action: utter_help 转账场景 - rule: Submit transfer_money_form while not switched from previous form condition: - active_loop: transfer_money
C++实现web token加密生成验证
一个大佬的博客
08-20 923
【代码】C++实现web token加密验证。
keystonemiddleware:OpenStack身份(Keystone)中间件。 在opendev.org上维护的代码镜像
05-04
团队和存储库标签 OpenStack Identity API的中间件(Keystone) 该软件包包含中间件模块,这些中间件模块旨在为除Keystone < >之外的Web服务提供身份验证和授权功能。 最突出的模块是keystonemiddleware.auth_token 。 该软件包不提供任何CLI或Python API功能。 有关贡献的信息,请参见CONTRIBUTING.rst 。 许可证:Apache许可证,版本2.0 文档: : 资料来源: : 错误: : 发行说明: : 有关其他信息,请参考父项目Keystone:
Keystone中间件keystonemiddleware.zip
07-18
keystonemiddleware 包括了用于提供认证和授权功能的 Keystone 中间件模块。最突出的模块是keystonemiddleware.auth_token,此包不会公开任何 CLI 或者 Python API 功能。
Openstack Glance认证失败排错:WARNING keystonemiddleware.auth_token [-] Identity response:
Q先生
12-13 4672
1. 错误信息 安装Openstack Train创建glance时发现无法上传镜像 /var/log/glance/api.log 有大量报错.错误信息大致就是token认证失败 2021-12-13 08:45:28.417 64333 WARNING keystonemiddleware.auth_token [-] Identity response: {"error":{"code":401,"message":"The request you have made requires authent
[原]openstack-kilo--issue(十五) WARNING keystonemiddleware.auth_token Authorization failed for token Co...
weixin_30678821的博客
01-17 690
在创建vm的时候在controller node报错: 2017-01-17 18:36:26.942 17143 INFO neutron.wsgi [req-a815cde4-f49c-4d23-b9c3-030bfc2a75d4 ] 10.68.124.5 - - [17/Jan/2017 18:36:26] "GET /v2.0/security-groups.json?tenan...
keystonemiddleware支持SASL--系列1
qq_33970713的博客
07-09 334
系列2: 在实际测试中,发现nova在调用keystonemiddleware的时候,keystonemiddleware也会访问memcached服务。 如果memcached开启SASL认证功能,而keystonemiddleware没有这个认证功能,就会出现访问失败的现象; 在keystonemiddleware组件中的class AuthProtocol(BaseAuthProtocol)函数中会注册配置项: self._conf = config.Config('auth_token
openstack compute service list报错(HTTP 503)
controllerha的博客
12-07 8943
[root@controller ~]# openstack compute service list Unknown Error (HTTP 503) (Request-ID: req-b4bedf97-115c-401d-9775-b97ec09d9d20) Unknown Error (HTTP 503) 未知错误(HTTP 503) /var/log/nova/nova-ap
使用kube-prometheus部署k8s监控(最新版)
weixin_45444133的博客
09-23 7809
为了方便大家使用prometheus,Coreos出了提供了一个Operator,而为了方便大家一站式的监控方案就有了项目kube-prometheus是一个脚本项目,它主要使用jsonnet写成,其作用呢就是模板+参数然后渲染出yaml文件集,主要是作用是提供一个开箱即用的监控栈,用于kubernetes集群的监控和应用程序的监控。 这个项目主要包括以下软件栈:Prometheus Operator的架构图图片来源: https://raw.githubusercontent.com/prometheus
Kubernetes 安装配置ingress controller
qianghong000的博客
11-21 1360
Kubernetes 安装配置ingress controller
keystonemiddleware支持SASL--系列3
qq_33970713的博客
07-16 229
这一篇写如何使用demo代码对keystonemiddleware进行测试。
Keystone中间件WSGI环境变量总结
weixin_34101229的博客
11-04 197
  OpenStack keystonemiddleware接收前一个WSGI过滤器传来的WSGI环境信息,进行验证工作后传递给下一个中间件,本文探讨keystone中间件究竟有哪些WSGI环境变量。      说明:下文中以 HTTP\_ 开头的header对应标准http header, 以 HTTP_X 开头的header对应扩展的http header,WSGI环境信息用于在不同的WS...
解决openstack的neutron服务不能访问 CRITICAL keystonemiddleware.auth_token
虾米的博客
11-24 5066
问题提出:前段时间不小心删除了service项目(租户),neutron服务一切正常,就是网络服务不能访问。查看日志/var/log/neutron/service.log,发现错误原因: CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Identity server rejected authorizat
keystonemiddleware中的token 认证
cengjch2011的专栏
10-28 5793
在系统访问api时,都要经过auth_token认证,只有认证成功才能继续访问api,所以弄清api认证的流程很有必要。 token认证包括了三个认证过程,即:cache认证,本地认证和远程认证; 1、根据token信息从token cache获取token id 和具体的token信息(json字符串,cached);返回cached; 2、如果token cache中没有,则使用cm
keystone提示“......The client is assumed to be in error. (HTTP 400) (Request-ID: req-7d2a33be-..)“错误
qq_41235506的博客
11-19 4267
在安装openstack验证keystone时执行"openstack --os-auth-url http://controller:35357/v3 --os-project-domain-name default --os-user-domain-name default --os-project-name admin --os-username admin token issue"提示以下错误. Expecting to find domain in project. The server coul
openstack glance连接认证keystone出现错误的一个解决思路
热门推荐
sfdst的博客
04-21 1万+
搭建好了keystone服务后,对自己本身的认证是成功的 说明keystone配置是正确的。 之后开始配置glance服务,配置好了,出现了如下报错。 [root@linux-node1 ~]# glance  image-list 503 Service Unavailable: The server is currently unavailable. Please try again a
openstack-train neutron server.log报错
idc_lm的博客
04-06 1961
neutron -server.log报错 server.log:2020-04-06 17:48:36.752 34563 WARNING neutron.api.extensions [req-47fd5c50-50a1-436f-83c7-32fde22fb959 - - - - -] Did not find expected name "Stdattrs_common" in /usr/...
keystone的兼容API
milankaka22的专栏
03-17 2050
keystone服务在启动的时候,会加载v2.0与v3的API,v3 API增加了domain的概念,两个版本可以同时存在 在使用client的时候,也有不同了,在CLI client里,keystone命令,只能支持V2.0版本API的访问,而openstack cli可以同时支持v2.0与v3.0。 我的环境变量文件如下: export OS_AUTH_URL=http:
keystonemiddleware.auth_token [-] Identity response: {"error":{"code":401,"message":"The request you have made requires authentication.","title":"Unauthorized"}}
最新发布
03-20
根据用户提供的引用内容,有几个可能的原因:比如认证未完成、X-Auth-Token无效、或者用户、项目、域被禁用等。 用户提供的引用[1]提到403 Forbidden的情况,可能涉及密码不一致的问题,引用[2]中的例子就是因为...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值