Re: [ceph-users] Getting started with RADOS Gateway

[Howarth, Chris]

Many thanks Alvaro. I have modified and still have the same issue (see below). 
Could really do with a list of checks to be able to find out which components 
of the radosgw are running correctly and which are not.

# radosgw-admin subuser create --uid=gwuser1 --subuser=gwuser1:swift 
--access=full
{ "user_id": "gwuser1",
  "display_name": "{Rados Gateway User1}",
  "email": "",
  "suspended": 0,
  "max_buckets": 1000,
  "auid": 0,
  "subusers": [
        { "id": "gwuser1:swift",
          "permissions": "full-control"}],
  "keys": [
        { "user": "gwuser1",
          "access_key": "B5CL8KIB8LYH55FDPYPS",
          "secret_key": "B5\/EEMuTaTkSU5sS1zol2OknBPch04ZZdh86GGTA"}],
  "swift_keys": [
        { "user": "gwuser1:swift",
          "secret_key": "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K"}],
  "caps": []}

# swift -V 1.0 -A http://10.40.99.165/auth -U gwuser1:swift -K 
"kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K" post chtest
Auth GET failed: http://10.40.99.165:80/auth/ 403 Forbidden



From: Alvaro Izquierdo Jimeno [mailto:aizquie...@aubay.es]
Sent: 05 July 2013 10:43
To: Howarth, Chris [CCC-OT_IT]; ceph-us...@ceph.com
Subject: RE: Getting started with RADOS Gateway

Hi,

Maybe you forgot some step when creating the subuser, because you have empty 
the subusers field, and you need an id and permisssions....
Something like that:
  "subusers": [
        { "id": " gwuser1:swift",
          "permissions": "full-control"}],

I think you need to do this step
sudo radosgw-admin subuser create --uid=johndoe --subuser=johndoe:swift 
--access=full



De: ceph-users-boun...@lists.ceph.com<mailto:ceph-users-boun...@lists.ceph.com> 
[mailto:ceph-users-boun...@lists.ceph.com] En nombre de Howarth, Chris
Enviado el: viernes, 05 de julio de 2013 10:03
Para: ceph-us...@ceph.com<mailto:ceph-us...@ceph.com>
Asunto: [ceph-users] Getting started with RADOS Gateway

Hi - I "think" I have configured the rados gateway correctly on a RHEL6 server 
using httpd-2.2.15-28.el6_4.x86_64, but an unable to connect and am having a 
hard time tracking down where the problem is. I am also unclear as to what to 
check for to validate my config. In particular if I try to connect from a host:

# swift -V 1.0 -A http://10.40.99.165/auth -U gwuser1:swift -K 
"kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K" post chtest
Auth GET failed: http://10.40.99.165:80/auth/ 403 Forbidden

The relevant configuration info is below. Any pointers would be very much 
appreciated (and really cheer up my Friday).

# radosgw-admin user info --uid=gwuser1
{ "user_id": "gwuser1",
  "display_name": "{Rados Gateway User1}",
  "email": "",
  "suspended": 0,
  "max_buckets": 1000,
  "auid": 0,
  "subusers": [],
  "keys": [
        { "user": "gwuser1",
          "access_key": "B5CL8KIB8LYH55FDPYPS",
          "secret_key": "B5\/EEMuTaTkSU5sS1zol2OknBPch04ZZdh86GGTA"}],
  "swift_keys": [
        { "user": "gwuser1:swift",
          "secret_key": "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K"}],
  "caps": []}

# tail -30 /etc/httpd/conf/httpd.conf
# The first VirtualHost section is used for requests without a known
# server name.
#
#FastCgiExternalServer /var/www/s3gw.fcgi -socket /tmp/radosgw.sock

<VirtualHost *:80>
    ServerAdmin chris.howa...@citi.com<mailto:chris.howa...@citi.com>
    DocumentRoot /var/www
    ServerName e8c3-dl360g7-09.nam.nsroot.net
#    ErrorLog logs/dummy-host.example.com-error_log
#    CustomLog logs/dummy-host.example.com-access_log common
    RewriteEngine On
    RewriteRule ^/([a-zA-Z0-9-_.]*)([/]?.*) 
/s3gw.fcgi?page=$1&params=$2&%{QUERY_STRING} 
[E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
    <IfModule mod_fastcgi.c>
            <Directory /var/www>
                    Options +ExecCGI
                    AllowOverride All
                    SetHandler fastcgi-script
                    Order allow,deny
                    Allow from all
                    AuthBasicAuthoritative Off
            </Directory>
FastCgiExternalServer /var/www/s3gw.fcgi -socket /tmp/radosgw.sock
    </IfModule>
    AllowEncodedSlashes On
    ErrorLog /var/log/httpd/error.log
    CustomLog /var/log/httpd/access.log combined
    ServerSignature Off

</VirtualHost>

# cat /var/www/s3gw.fcgi
#!/bin/sh
exec /usr/bin/radosgw -c /etc/ceph/ceph.conf -n client.radosgw.gateway
__________________________
Chris Howarth
OS Platforms Engineering
Citi Architecture & Technology Engineering
(e) chris.howa...@citi.com<mailto:chris.howa...@citi.com>
(t) +44 (0) 20 7508 3848
(f) +44 (0) 20 7508 0964
(mail-drop) CGC-06-3A


_______________________________________________
ceph-users mailing list
ceph-users@lists.ceph.com
http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com