Sangeetha Hariharan created CLOUDSTACK-1571:
-----------------------------------------------
Summary: AWS Regions - When deleting domain/account/user from a
region that is not the owner , the request is not being forwarded to the owner
region.
Key: CLOUDSTACK-1571
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-1571
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: Management Server
Affects Versions: 4.1.0
Environment: latest build from 4.1
Reporter: Sangeetha Hariharan
Assignee: Kishan Kavala
Fix For: 4.1.0
AWS Regions - When deleting domain/account/user from a region that is not the
owner , the request is not being forwarded to the owner region.
Installed 1 management server.
Created few domains,accounts and users.
Installed 2nd management server . Following steps were done as part of adding
this region:
1. Install a 2nd CS instance.
2. While installing database set region_id using -r option in
cloud-setup-databases script.
cloud-setup-databases cloud:<dbpassword>@localhost --deploy-as=root:<password>
-e <encryption_type> -m <management_server_key> -k <database_key> -r <region_id>
3. Start mgmt server
4. Using addRegion API, add region 1 to region 2 and also region 2 to region 1.
5. copy account/user/domain tables from Region1 DB to Region2 DB:
mysqldump -u cloud -p -h <region1_db_host> cloud account user domain >
region1.sql
mysql -u cloud -p -h <region2_db_host> cloud < region1.sql
After following all the above steps , log in to region2.
>From region 2,
Try to delete user that was created in region1 ( and manually synced to
region2) .
User deletion reports success.
No deletion happens on the local DB which is as expected. But I do not see the
request being forwarded to the owner region.
management server logs when deletion of user happens from a region that is not
the owner of this user:
2013-03-07 04:39:37,421 DEBUG [cloud.api.ApiServlet] (catalina-exec-22:null)
===START=== 10.216.50.136
--ommand=deleteUser&response=json&sessionkey=IFOSyaGlObYWuHpU%2BgM4rhJBRFY%3D&id=c6ca317e-386e-43eb-8892-a7035&_=1362631245875
2013-03-07 04:39:37,445 DEBUG [cloud.api.ApiServlet] (catalina-exec-22:null)
===END=== 10.216.50.136 --
Gmand=deleteUser&response=json&sessionkey=IFOSyaGlObYWuHpU%2BgM4rhJBRFY%3D&id=c6ca317e-386e-43eb-8892-a7028&_=1362631245875
mysql> select * from regions;
ERROR 1146 (42S02): Table 'cloud.regions' doesn't exist
mysql> select * from region;
+----+---------+------------------------------------+-----------------------------------------------------
----------------------------------+-----------------------------------------------------------------------
-----------------+
| id | name | end_point | api_key
| secret_key
|
+----+---------+------------------------------------+-----------------------------------------------------
----------------------------------+-----------------------------------------------------------------------
-----------------+
| 1 | region1 | http://10.223.131.202:8080/client/ |
jne_oosNAJtGpaW1U8ovFmLICPoHFDi0VjGsPCkL_FQhnqTt6ARV
QQc5eoKmvJNnTTEVSQMkf17JLI2JnCYLQ |
P3VIZycVsrGnkjZGwWVSC2MxCO686FPnJshvovq5v6M9HY2MieFbkQzIDo574FWsAI0vBB
3C3Kt0io73ysimJw |
| 2 | Local | http://localhost:8080/client/api |
|
|
+----+---------+------------------------------------+-----------------------------------------------------
----------------------------------+-----------------------------------------------------------------------
-----------------+
2 rows in set (0.00 sec)
mysql> select * from user;
+----+--------------------------------------+----------------+----------------------------------+---------
---+----------------+----------------+------------------------+---------+---------------------------------
-------------------------------------------------------+--------------------------------------------------
--------------------------------------------------------------------------------+---------------------+---
------------------+---------------------+--------------------+---------------+--------------------------+-
----------+
| id | uuid | username | password
| account_ id | firstname | lastname | email
| state | api_key
| secret_key
| created | re moved | timezone
| registration_token | is_registered | incorrect_login_attempts |
region_id |
+----+--------------------------------------+----------------+----------------------------------+---------
---+----------------+----------------+------------------------+---------+---------------------------------
-------------------------------------------------------+--------------------------------------------------
--------------------------------------------------------------------------------+---------------------+---
------------------+---------------------+--------------------+---------------+--------------------------+-
----------+
| 1 | 875c4520-8688-11e2-89d9-06d4460004b1 | system |
0.343720744684078 | 1 | system | cloud
| NULL | enabled | NULL
| NULL
| 2013-03-06 10:06:11 | NU LL
| NULL | NULL | 0 |
0 | 1 |
| 2 | 875d71d4-8688-11e2-89d9-06d4460004b1 | admin |
5f4dcc3b5aa765d61d8327deb882cf99 | 2 | admin | cloud
| NULL | enabled | jne_oosN-AJtGpaW1U8ovFmLICPoHFDi
0VjGsPCkL_FQhnqTt6ARVQQc5eoKmvJNnTTEVSQMkf17JLI2JnCYLQ |
8mYnCOPdCBEbXr4sFp2vHjFH1Ko3BII0hq5Oa5ZjAUsCwByQ2
Cj3XIBHSoYYgn/yVLeZvBFpdA66HWsKSkSWV9JQ0r9Pxx/EwfjuhaYbOeDWKcXSyVlgn9jIKDsaj6nG
| 2013-03-06 10:06:11 | NU LL | NULL | NULL
| 0 | 0 | 1 |
| 3 | a3a88b97-e4a7-40f6-92e6-8e84c6d39005 | san-test1 |
fef7b7d5841da69af2e72aac6803e2ea | 3 | san-test1 |
san-test1 | san-te...@abc.com | enabled | NULL
| NULL
| 2013-03-06 19:02:12 | NU LL
| America/Los_Angeles | NULL | 0 |
0 | 1 |
| 4 | c6ca317e-386e-43eb-8892-a702807e1935 | san-test11 |
53d9012c4b85f29b8ff5c5c3606e9d62 | 4 | san-test11 |
san-test11 | san-tes...@abc.com | enabled |
nsxmRJv5KUaqyYEOlNGfVwPwqLX_wReO
kU547BE5YX8Ul_gX_pLsqBHm-7X7mq_YmCUX3XCEu4ywbZ7qIxVdvA |
KxBzhA6iTSaub3hqUW7hsJeGx0gFqJVGDJBL2wYctWiiiw5Xo
xjIIH/Lpoi9CTdKBSmgIzM+AYRrnDRCaoDr64mtIk5j7hMANyUNKZK1IPvNiH0uN6x8HEqfjiURCkl/
| 2013-03-06 19:35:54 | NU LL | America/Los_Angeles | NULL
| 0 | 0 | 1 |
| 5 | 37ddf329-6d71-495b-ba17-4b1210a63142 | san-test1-usr1 |
34ccd331164ecd9bd184d54c66b6560c | 3 | san-test1-usr1 |
san-test1-usr1 | san-test1-u...@abc.com | enabled | NULL
| NULL
| 2013-03-06 19:41:47 | NU LL
| America/Los_Angeles | NULL | 0 |
0 | 1 |
| 6 | ec0e2d17-6447-4c05-ab68-caf36063f35c | san-test2-usr2 |
0351f3fbb50022984cc13a793c06ae06 | 3 | san-test2-usr2 |
san-test2-usr2 | san-test2-u...@abc.com | enabled | NULL
| NULL
| 2013-03-06 19:42:07 | NU LL
| America/Los_Angeles | NULL | 0 |
0 | 1 |
| 7 | bdf326b1-be0e-4c0a-bb8d-17a36c73d17e | yo |
6d0007e52f7afb7d5a0650b0ffb8a4d1 | 5 | yo | yo
| y...@abc.com | enabled | NULL
| NULL
| 2013-03-07 10:16:57 | 20 13-03-07
10:17:18 | America/Los_Angeles | NULL | 0 |
0 | 2 |
| 8 | 0a28ec80-115f-4e0f-b8ec-050ac6797389 | test |
098f6bcd4621d373cade4e832627b4f6 | 6 | test | test
| t...@abc.com | enabled | NULL
| NULL
| 2013-03-07 10:35:03 | 20 13-03-07
11:00:06 | America/Los_Angeles | NULL | 0 |
0 | 2 |
+----+--------------------------------------+----------------+----------------------------------+---------
---+----------------+----------------+------------------------+---------+---------------------------------
-------------------------------------------------------+--------------------------------------------------
--------------------------------------------------------------------------------+---------------------+---
------------------+---------------------+--------------------+---------------+--------------------------+-
----------+
8 rows in set (0.00 sec)
The same behavior is noted when deleting domain and account that dont belong to
this region.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
