Bug #1208
Standalone Sunstone serveradmin credentials
| Status: | Closed | Start date: | 04/09/2012 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: |  Hector Sanjuan | % Done: | 0% | |
| Category: | Documentation | |||
| Target version: | Release 3.6 | |||
| Resolution: | fixed | Pull request: | ||
| Affected Versions: | OpenNebula 3.2 |
Description
Hi,
I've spent an hour figuring how to deploy Sunstone on a stand-alone server following:
http://opennebula.org/documentation:rel3.2:sunstone#deploying_sunstone_in_a_different_machine
ONE_AUTH Needs to point to a file containing just a single line stating the oneadmin's credentials, “username:password”. If ONE_AUTH is not defined, $HOME/.one/one_auth will be used instead. If no auth file is present, OpenNebula Sunstone cannot work properly, as this is needed by the server to authenticate users.
Is not used anymore in favor of serveradmin credentials:
http://opennebula.org/documentation:rel3.2:cloud_auth#configure
And PLEASE clearly state in the documentation that the .one folder containing the *_auth files is $ONE_LOCATION/var/.one and NOT $ONE_LOCATION/.one (this fooled me repeatedly).
This was the first error I was getting (due to wrong serveradmin credentials, since the stand-alone Sunstone was a full OpenNebula installation for testing purposes before):
Mon Apr 9 11:57:15 2012 [ReM][D]: UserPoolInfo method invoked Mon Apr 9 11:57:15 2012 [AuM][D]: Message received: LOG I 11 Command execution fail: /var/zone/var/remotes/auth/server_cipher/authenticate 'serveradmin' 'cbb01f49c110b38cf969b7453e7d033b78a091f0' VC0hLdzwR8KoBa5tMtov4TYNgXTA7C+M/UBlIfg1u+9W4a0UpI7RIVSHnFFEFU2i Mon Apr 9 11:57:15 2012 [AuM][I]: Command execution fail: /var/zone/var/remotes/auth/server_cipher/authenticate 'serveradmin' 'cbb01f49c110b38cf969b7453e7d033b78a091f0' VC0hLdzwR8KoBa5tMtov4TYNgXTA7C+M/UBlIfg1u+9W4a0UpI7RIVSHnFFEFU2i Mon Apr 9 11:57:15 2012 [AuM][D]: Message received: LOG E 11 bad decrypt Mon Apr 9 11:57:15 2012 [AuM][I]: bad decrypt Mon Apr 9 11:57:15 2012 [AuM][D]: Message received: LOG I 11 ExitCode: 255 Mon Apr 9 11:57:15 2012 [AuM][I]: ExitCode: 255 Mon Apr 9 11:57:15 2012 [AuM][D]: Message received: AUTHENTICATE FAILURE 11 bad decrypt Mon Apr 9 11:57:15 2012 [AuM][E]: Auth Error: bad decrypt Mon Apr 9 11:57:15 2012 [ReM][E]: [UserPoolInfo] User couldn't be authenticated, aborting call.
History
#1
Updated by Daniel Molina about 9 years ago
Hi Olivier,
Thanks for your feedback and sorry for the missing information in the documentation.
I have updated the section you mentioned:
http://opennebula.org/documentation:rel3.4:sunstone?&#deploying_sunstone_in_a_different_machine
But, I did not find where the $ONE_LOCATION/.one directory is mentioned in the documentation.
#2
Updated by Giovanni Toraldo about 9 years ago
Hi Daniel,
Daniel Molina wrote:
But, I did not find where the $ONE_LOCATION/.one directory is mentioned in the documentation.
That's the point, when using a self-contained installation the right path is $ONE_LOCATION/var/.one and not ~/.one (for system-wide installs they are the same folder, right?).
I think this difference should be highlighted, since an user can be tempted to put the sunstone_auth in ~/.one (that contains only one_auth) and not in $ONE_LOCATION/var/.one, since the folder name is identical.
Thanks!
#3
Updated by Giovanni Toraldo about 9 years ago
I noticed only now that in the original ticket I was referring to ~/.one as $ONE_LOCATION/.one, since for my self-contained install destination I've used the home directory of my oneadmin user.
Sorry for that.
#4
Updated by Ruben S. Montero about 9 years ago
- Target version set to Release 3.6
#5
Updated by Giovanni Toraldo about 9 years ago
As a side note, http://opennebula.org/documentation:rel3.4:sunstone?&#deploying_sunstone_in_a_different_machine states that $ONE_XMLRPC could be used but seems that it doesn't override the endpoint defined inside sunstone-server.conf, is this correct?
#6
Updated by Ruben S. Montero about 9 years ago
- Assignee set to Hector Sanjuan
#7
Updated by Hector Sanjuan about 9 years ago
- Status changed from New to Assigned
- Resolution set to fixed
Giovanni Toraldo wrote:
As a side note, http://opennebula.org/documentation:rel3.4:sunstone?&#deploying_sunstone_in_a_different_machine states that
$ONE_XMLRPCcould be used but seems that it doesn't override the endpoint defined insidesunstone-server.conf, is this correct?
Yes that its correct. I have updated the documentation accordingly.
#8
Updated by Ruben S. Montero about 9 years ago
- Status changed from Assigned to Closed