Mistral

  1. Bug #1843175
  2. Comment #1

Comment 1 for bug 1843175

Revision history for this message
Boxiang Zhu (bxzhu-5355) wrote :

Hi, when I use the normal user(with `member` role), and I add a cron trigger to do something with cinder api. But I met the same problem. The error log is as followed:

2019-09-11 03:23:59.589 6 WARNING mistral.actions.openstack.base [req-4097987f-7527-48aa-8e2e-8261eabd8bd4 7c8adfbef47241a7b5e1d3b4e4fe5a09 efa0e71fb6974ad3a252449f8a376927 - - -] Traceback (most recent call last):
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/actions/openstack/base.py", line 115, in run
    method = self._get_client_method(self._get_client(context))
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/actions/openstack/base.py", line 84, in _get_client
    return self._create_client(context)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/actions/openstack/actions.py", line 233, in _create_client
    cinder_endpoint = self.get_service_endpoint()
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/actions/openstack/base.py", line 108, in get_service_endpoint
    region_name=self.action_region
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 160, in get_endpoint_for_project
    service_catalog = obtain_service_catalog(ctx)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 229, in obtain_service_catalog
    include_catalog=True
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/keystoneclient/v3/tokens.py", line 85, in get_token_data
    resp, body = self._client.get(url, headers=headers)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/keystoneauth1/adapter.py", line 375, in get
    return self.request(url, 'GET', **kwargs)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/keystoneauth1/adapter.py", line 534, in request
    resp = super(LegacyJsonAdapter, self).request(*args, **kwargs)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/keystoneauth1/adapter.py", line 237, in request
    return self.session.request(url, method, **kwargs)
  File "/var/lib/kolla/venv/lib/python2.7/site-packages/keystoneauth1/session.py", line 890, in request
    raise exceptions.from_response(resp, method, url)
Forbidden: You are not authorized to perform the requested action: identity:validate_token. (HTTP 403) (Request-ID: req-e7c8b915-bbc6-4703-96f1-50258a233f62)
: Forbidden: You are not authorized to perform the requested action: identity:validate_token. (HTTP 403) (Request-ID: req-e7c8b915-bbc6-4703-96f1-50258a233f62)