Comment 3 for bug 1929699

I've noticed that the previously granted permissions are not enough, according to the https://github.com/openstack/charm-manila-ganesha/blob/master/src/lib/charm/openstack/manila_ganesha.py#L45-L52

Trying to fix that:

root@juju-291059-3-lxd-1:~# ceph auth caps client.manila-ganesha mon 'allow r; allow command "osd blacklist"; allow command "auth del"; allow command "auth caps"; allow command "auth get"; allow command "auth get-or-create"' mds 'allow *' osd 'allow rwx'
updated caps for client.manila-ganesha
root@juju-291059-3-lxd-1:~# ceph auth get client.manila-ganesha
exported keyring for client.manila-ganesha
[client.manila-ganesha]
        key = AQDZmZtg7rn3JxAAg1H3RhG5iqC6kRzEEdZcnA==
        caps mds = "allow *"
        caps mon = "allow r; allow command \"osd blacklist\"; allow command \"auth del\"; allow command \"auth caps\"; allow command \"auth get\"; allow command \"auth get-or-create\""
        caps osd = "allow rwx"

again:
manila create --share-type cephfsnfstype --name cephnfsshare1 nfs 1
manila access-allow cephnfsshare1 ip <IP_ADDR> --access-level rw

-> same rados.Error: access denied in manila-share.log

ceph-mon: https://pastebin.canonical.com/p/CmQTDpNSYf/

Even granting an "allow *" permission didn't help....

root@juju-291059-3-lxd-1:~# ceph auth caps client.manila-ganesha mon 'allow *' mds 'allow *' osd 'allow rwx'
updated caps for client.manila-ganesha
root@juju-291059-3-lxd-1:~# ceph auth get client.manila-ganesha
exported keyring for client.manila-ganesha
[client.manila-ganesha]
        key = AQDZmZtg7rn3JxAAg1H3RhG5iqC6kRzEEdZcnA==
        caps mds = "allow *"
        caps mon = "allow *"
        caps osd = "allow rwx"

Same result in manila-share.log @ ganesha unit: https://pastebin.canonical.com/p/jybZqWGtSg/