Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
hi Radoslaw Zarzynski After i retry mamy times, I find when swift generate keystone user to radosgw first time the message will dump 2016-09-22 17:10:36.077496 7f8104ff9700 10 host=10.62.9.140 2016-09-22 17:10:36.077503 7f8104ff9700 20 subdomain= domain= in_hosted_domain=0 in_hosted_domain_s3website=0 2016-09-22 17:10:36.093169 7f8104ff9700 10 ver=v1 first= req= 2016-09-22 17:10:36.093189 7f8104ff9700 10 handler=29RGWHandler_REST_Service_SWIFT 2016-09-22 17:10:36.093194 7f8104ff9700 2 req 1:0.015742:swift:HEAD /swift/v1::getting op 3 2016-09-22 17:10:36.093203 7f8104ff9700 10 op=29RGWStatAccount_ObjStore_SWIFT 2016-09-22 17:10:36.093205 7f8104ff9700 2 req 1:0.015753:swift:HEAD /swift/v1:stat_account:authorizing 2016-09-22 17:10:36.093229 7f8104ff9700 20 token_id=bd4f5e7007a04e968a0b7473e8d6bf33 2016-09-22 17:10:36.093274 7f8104ff9700 20 sending request to http://10.62.13.253:35357/v2.0/tokens/bd4f5e7007a04e968a0b7473e8d6bf33 2016-09-22 17:10:36.114965 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.114977 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=HTTP/1.1 200 OK 2016-09-22 17:10:36.114981 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.114982 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=Vary: X-Auth-Token 2016-09-22 17:10:36.114985 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.114986 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=Content-Type: application/json 2016-09-22 17:10:36.114988 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.114999 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=Content-Length: 3638 2016-09-22 17:10:36.115002 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.115005 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=X-Openstack-Request-Id: req-a54df9bd-d219-4146-aac8-bf284e7fcf5f 2016-09-22 17:10:36.115008 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.115009 7f8104ff9700 20 RGWPostHTTPData::receive_header: line=Date: Thu, 22 Sep 2016 09:08:05 GMT 2016-09-22 17:10:36.115020 7f8104ff9700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:36.115021 7f8104ff9700 20 RGWPostHTTPData::receive_header: line= 2016-09-22 17:10:36.115188 7f8104ff9700 20 received response: {"access": {"token": {"issued_at": "2016-09-22T09:08:05.688414", "expires": "2016-09-22T10:08:05Z", "id": "bd4f5e7007a04e968a0b7473e8d6bf33", "tenant": {"enabled": true, "id": "d72acd4eb56a4278ace834a391eeb158", "name": "admin", "description": "admin tenant"}, "audit_ids": ["TVhVSAdqQxqlhAJhNXBUTg"]}, "serviceCatalog": [{"endpoints_links": [], "endpoints": [{"adminURL": " http://10.62.13.253:8774/v2/d72acd4eb56a4278ace834a391eeb158";, "region": "RegionOne", "publicURL": " http://10.62.13.253:8774/v2/d72acd4eb56a4278ace834a391eeb158";, "id": "26f84b92d9f446e9bdc1367d5c680ea2", "internalURL": " http://10.62.13.253:8774/v2/d72acd4eb56a4278ace834a391eeb158"}], "type": "compute", "name": "nova"}, {"endpoints_links": [], "endpoints": [{"adminURL": "http://10.62.13.253:9696";, "region": "RegionOne", "publicURL": "http://10.62.13.253:9696";, "id": "33dd45b1fda34376b73750f401403dd8", "internalURL": "http://10.62.13.253:9696"}], "type": "network", "name": "neutron"}, {"endpoints_links": [], "endpoints": [{"adminURL": "http://10.62.13.253:8776/v2/d72acd4eb56a4278ace834a391eeb158";, "region": "RegionOne", "publicURL": " http://10.62.13.253:8776/v2/d72acd4eb56a4278ace834a391eeb158";, "id": "823be35e35a447cd88006c94aa953837", "internalURL": " http://10.62.13.253:8776/v2/d72acd4eb56a4278ace834a391eeb158"}], "type": "volumev2", "name": "cinderv2"}, {"endpoints_links": [], "endpoints": [{"adminURL": "http://127.0.0.1:8774/v3";, "region": "RegionOne", "publicURL": "http://127.0.0.1:8774/v3";, "id": "1a36a9257f9245cfac35a4d792e5a101", "internalURL": "http://127.0.0.1:8774/v3"}], "type": "computev3", "name": "novav3"}, {"endpoints_links": [], "endpoints": [{"adminURL": "http://10.62.13.253:9292";, "region": "RegionOne", "publicURL": "http://10.62.13.253:9292";, "id": "2e5c0bb777184d078b7859fd59b75ed7", "internalURL": "http://10.62.13.253:9292"}], "type": "image", "name": "glance"}, {"endpoints_links": [], "endpoints": [{"adminURL": "http://10.62.13.253:8777";, "region": "RegionOne", "publicURL": "http://10.62.13.253:8777";, "id": "d126c0eaa5c0457a801a729f0ad33c7f", "internalURL": "http://10.62.13.253:8777"}], "type": "metering", "name": "ceilometer"}, {"endpoints_links": [], "endpoints": [{"adminURL": " http://10.62.13.253:8776/v1/d72acd4eb56a4278ace834a391eeb158";, "region": "RegionOne", "publicURL": " http://10.62.13.253:8776/v1/d72acd4eb56a4278ace834a391eeb158";, "id": "6dc2fe16ef3948e4b05ce012a93d947a", "internalURL": " http://10.62.13.253:8776/v1/d72acd4eb56a4278ace834a391eeb158"}], "type": "volume", "name": "cinder"}, {"endpoints
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
hi Radoslaw Zarzynski now i retry the http://docs.ceph.com/docs/jewel/install/install-ceph- gateway/ and can get radosgw log as following, the result still 401 , it show got expired token: admin:admin expired i highlight inline.. 2016-09-22 17:09:40.975268 7f8292ffd700 10 content=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 2016-09-22 17:09:40.976034 7f8292ffd700 10 ceph_decode_cms: decoded: {"revoked": []} 2016-09-22 17:09:51.323852 7f82fe7fc700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-22 17:10:13.323924 7f82fe7fc700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-22 17:10:35.324028 7f82fe7fc700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-22 17:10:40.976182 7f8292ffd700 2 keystone revoke thread: start 2016-09-22 17:10:40.976220 7f8292ffd700 20 sending request to http://10.62.14.192:5000/v2.0/tokens/revoked 2016-09-22 17:10:41.008416 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008428 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=HTTP/1.1 200 OK 2016-09-22 17:10:41.008434 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008435 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=Vary: X-Auth-Token 2016-09-22 17:10:41.008439 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008440 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=Content-Type: application/json 2016-09-22 17:10:41.008442 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008443 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=Content-Length: 698 2016-09-22 17:10:41.008445 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008446 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=X-Openstack-Request-Id: req-19c9d303-a450-44cd-a89d-7ef14ddb4679 2016-09-22 17:10:41.008447 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008448 7f8292ffd700 20 RGWPostHTTPData::receive_header: line=Date: Thu, 22 Sep 2016 07:08:56 GMT 2016-09-22 17:10:41.008450 7f8292ffd700 20 RGWPostHTTPData::receive_header parsing HTTP headers 2016-09-22 17:10:41.008451 7f8292ffd700 20 RGWPostHTTPData::receive_header: line= 2016-09-22 17:10:41.008561 7f8292ffd700 10 request returned {"signed": "-BEGIN CMS-\nMIIBzgYJKoZIhvcNAQcCoIIBvzCCAbsCAQExDTALBglghkgBZQMEAgEwHgYJKoZI\nhvcNAQcBoBEED3sicmV2b2tlZCI6IFtdfTGCAYUwggGBAgEBMFwwVzELMAkGA1UE\nBhMCVVMxDjAMBgNVBAgMBVVuc2V0MQ4wDAYDVQQHDAVVbnNldDEOMAwGA1UECgwF\nVW5zZXQxGDAWBgNVBAMMD3d3dy5leGFtcGxlLmNvbQIBATALBglghkgBZQMEAgEw\nDQYJKoZIhvcNAQEBBQAEggEAi6EwxSG2h4A9iatlWY258MpqV4NQIRzEUEJIEuEG\ntlkf9AGjMi9bvXgEsJdf3WXQMPSQOdQAiISo9dWI0cLz90C9gA5buseORLpF5Ptd\nhSK29EtHCqBqlgAssS1ZvPAa3tl4QsqG6GGXpzYPHv8Ilkq5uuxWP3XxgJiBw3EB\ntgkI93CDidqK9dd49DoPKJDnKINAP2ku6lNwI24kC+KNc7ehPmbUH6vXGhgsGeBh\n/b49u0nUFzpshy5ehu3kF01vIvuo4FT9tMTmxQ4rn+LrdjLizgdAl2B/Qu/JlJ1J\n0vN/mFfbb/ClKerlTUJQOJqYbvZfPOw70ZCn2pRZCbyj9Q==\n-END CMS-\n"} 2016-09-22 17:10:41.008621 7f8292ffd700 10 signed=-BEGIN CMS- MIIBzgYJKoZIhvcNAQcCoIIBvzCCAbsCAQExDTALBglghkgBZQMEAgEwHgYJKoZI hvcNAQcBoBEED3sicmV2b2tlZCI6IFtdfTGCAYUwggGBAgEBMFwwVzELMAkGA1UE BhMCVVMxDjAMBgNVBAgMBVVuc2V0MQ4wDAYDVQQHDAVVbnNldDEOMAwGA1UECgwF VW5zZXQxGDAWBgNVBAMMD3d3dy5leGFtcGxlLmNvbQIBATALBglghkgBZQMEAgEw DQYJKoZIhvcNAQEBBQAEggEAi6EwxSG2h4A9iatlWY258MpqV4NQIRzEUEJIEuEG tlkf9AGjMi9bvXgEsJdf3WXQMPSQOdQAiISo9dWI0cLz90C9gA5buseORLpF5Ptd hSK29EtHCqBqlgAssS1ZvPAa3tl4QsqG6GGXpzYPHv8Ilkq5uuxWP3XxgJiBw3EB tgkI93CDidqK9dd49DoPKJDnKINAP2ku6lNwI24kC+KNc7ehPmbUH6vXGhgsGeBh /b49u0nUFzpshy5ehu3kF01vIvuo4FT9tMTmxQ4rn+LrdjLizgdAl2B/Qu/JlJ1J 0vN/mFfbb/ClKerlTUJQOJqYbvZfPOw70ZCn2pRZCbyj9Q== -END CMS- 2016-09-22 17:10:41.008637 7f8292ffd700 10 content=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
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hi, Responded inline. On Wed, Sep 21, 2016 at 4:54 AM, Brian Chang-Chien wrote: > > > [global] > ... > debug rgw = 20 > [client.radosgw.gateway] > host = brianceph > rgw keystone url = http://10.62.13.253:35357 > rgw keystone admin token = 7bb8e26cbc714c47a26ffec3d96f246f > rgw keystone accepted roles = admin, swiftuser, user, _member_, Member > rgw keystone token cache size = 500 > rgw keystone revocation interval = 60 > rgw keystone make new tenants = true > rgw s3 auth use keystone = true > nss db path = /var/ceph/nss The debug_rgw=20 has been put into the global section. I bet that's the sole reason why this particular RadosGW instance sees it. > and I still some config problem > > Q3 : when i edit /etc/ceph/ceph.conf , if my hostname is brianceph > the radosgw term in ceph.conf should be [client.radosgw.gateway] or > [client.radosgw.brianceph] > which one is correct? > > PS: when i create radosgw, i call th cmd " ceph-deploy rgw create brianceph" Most likely your current section naming is wrong. I haven't poked with ceph-deloy too much but I would say it should be [client.rgw.brianceph] or [client.radosgw.brianceph]. I don't have now any cluster alive to disambiguate, sorry. > Q4: when i finish to edit ceph.conf, i need restart radosgw service or > restart ceph service > in this case, i use ceph jewel, so which cmd need to call " systemctl > restart ceph-radosgw.target " or "systemctl ceph.target" Take a look on that: http://docs.ceph.com/docs/jewel/install/install-ceph-gateway/ > Q5: when i use ceph-deploy new brianceph, ceph will generate a ceph.cof, what > kind edit ceph.conf to create rgw is prefer > > Method1: i direct edit ceph.conf from ceph geerated, and use ceph-deploy > --overwrite-conf rgw create brianceph > > Method2(i used in the case) : first i call ceph-deploy rgw create brianceph, > and then edit ceph.conf in /etc/ceph/ folder , then call systemctl restart > ceph-radosgw.target > > > two methods i find some different issues, > in Method1, the radosgw item of the ceph.conf in /etc/ceph/ like "rgw > keystone url" will convert rgw_keystone_url , Spaces and underscores in configurables' names are treated in the same way. No difference. Regards, Radoslaw Zarzynski ___ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hi Radoslaw Zarzynski I also test Ceph Hammer 0.94.7 for rados gateway the result still response 401 , so i post ceph.conf, radosgw.log as following ceph.conf when i call swift cmd , radosgw.log 2016-09-21 17:47:12.141783 7fc7f4bf5700 10 content=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 2016-09-21 17:47:12.142766 7fc7f4bf5700 10 ceph_decode_cms: decoded: {"revoked": []} 2016-09-21 17:47:18.870391 7fc7f77fe700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-21 17:47:40.870466 7fc7f77fe700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-21 17:47:42.142875 7fc7f4bf5700 2 keystone revoke thread: start 2016-09-21 17:47:42.142925 7fc7f4bf5700 20 sending request to http://10.62.14.192:35357/v2.0/tokens/revoked 2016-09-21 17:47:42.172758 7fc7f4bf5700 10 request returned {"signed": "-BEGIN CMS-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\n0vN/mFfbb/ClKerlTUJQOJqYbvZfPOw70ZCn2pRZCbyj9Q==\n-END CMS-\n"} 2016-09-21 17:47:42.172825 7fc7f4bf5700 10 signed=-BEGIN CMS- MIIBzgYJKoZIhvcNAQcCoIIBvzCCAbsCAQExDTALBglghkgBZQMEAgEwHgYJKoZI hvcNAQcBoBEED3sicmV2b2tlZCI6IFtdfTGCAYUwggGBAgEBMFwwVzELMAkGA1UE BhMCVVMxDjAMBgNVBAgMBVVuc2V0MQ4wDAYDVQQHDAVVbnNldDEOMAwGA1UECgwF VW5zZXQxGDAWBgNVBAMMD3d3dy5leGFtcGxlLmNvbQIBATALBglghkgBZQMEAgEw DQYJKoZIhvcNAQEBBQAEggEAi6EwxSG2h4A9iatlWY258MpqV4NQIRzEUEJIEuEG tlkf9AGjMi9bvXgEsJdf3WXQMPSQOdQAiISo9dWI0cLz90C9gA5buseORLpF5Ptd hSK29EtHCqBqlgAssS1ZvPAa3tl4QsqG6GGXpzYPHv8Ilkq5uuxWP3XxgJiBw3EB tgkI93CDidqK9dd49DoPKJDnKINAP2ku6lNwI24kC+KNc7ehPmbUH6vXGhgsGeBh /b49u0nUFzpshy5ehu3kF01vIvuo4FT9tMTmxQ4rn+LrdjLizgdAl2B/Qu/JlJ1J 0vN/mFfbb/ClKerlTUJQOJqYbvZfPOw70ZCn2pRZCbyj9Q== -END CMS- 2016-09-21 17:47:42.172871 7fc7f4bf5700 10 content=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 2016-09-21 17:47:42.173848 7fc7f4bf5700 10 ceph_decode_cms: decoded: {"revoked": []} 2016-09-21 17:48:02.870540 7fc7f77fe700 2 RGWDataChangesLog::ChangesRenewThread: start 2016-09-21 17:48:12.173957 7fc7f4bf5700 2 keystone revoke thread: start 2016-09-21 17:48:12.174004 7fc7f4bf5700 20 sending request to http://10.62.14.192:35357/v2.0/tokens/revoked 2016-09-21 17:48:12.204581 7fc7f4bf5700 10 request returned {"signed": "-BEGIN CMS-\nMIIBzgYJKoZIhvcNAQcCoIIBvzCCAbsCAQExDTALBglghkgBZQMEAgEwHgYJKoZI\nhvcNAQcBoBEED3sicmV2b2tlZCI6IFtdfTGCAYUwggGBAgEBMFwwVzELMAkGA1UE\nBhMCVVMxDjAMBgNVBAgMBVVuc2V0MQ4wDAYDVQQHDAVVbnNldDEOMAwGA1UECgwF\nVW5zZXQxGDAWBgNVBAMMD3d3dy5leGFtcGxlLmNvbQIBATALBglghkgBZQMEAgEw\nDQYJKoZIhvcNAQEBBQAEggEAi6EwxSG2h4A9iatlWY258MpqV4NQIRzEUEJIEuEG\ntlkf9AGjMi9bvXgEsJdf3WXQMPSQOdQAiISo9dWI0cLz90C9gA5buseORLpF5Ptd\nhSK29EtHCqBqlgAssS1ZvPAa3tl4QsqG6GGXpzYPHv8Ilkq5uuxWP3XxgJiBw3EB\ntgkI93CDidqK9dd49DoPKJDnKINAP2ku6lNwI24kC+KNc7ehPmbUH6vXGhgsGeBh\n/b49u0nUFzpshy5ehu3kF01vIvuo4FT9tMTmxQ4rn+LrdjLizgdAl2B/Qu/JlJ1J\n0vN/mFfbb/ClKerlTUJQOJqYbvZfPOw70ZCn2pRZCbyj9Q==\n-END CMS-\n"} 2016-09-21 17:48:12.204647 7fc7f4bf5700 10 signed=-BEGIN CMS- MIIBzgYJKoZIhvcNAQcCoIIBvzCCAbsCAQExDTALBglghkgBZQMEAgEwHgYJKoZI hvcNAQcBoBEED3sicmV2b2tlZCI6IFtdfTGCAYUwggGBAgEBMFwwVzELMAkGA1UE BhMCVVMxDjAMBgNVBAgMBVVuc2V0MQ4wDAYDVQQHDAVVbnNldDEOMAwGA1UECgwF VW5zZXQxGDAWBgNVBAMMD3d3dy5leGFtcGxlLmNvbQIBATALBglghkgBZQMEAgEw DQYJKoZIhvcNAQEBBQAEggEAi6EwxSG2h4A9iatlWY258MpqV4NQIRzEUEJIEuEG tlkf9AGjMi9bvX
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hi Brian, Responded inline. On Tue, Sep 20, 2016 at 5:45 AM, Brian Chang-Chien wrote: > > > 2016-09-20 10:14:38.761635 7f2049ffb700 20 > HTTP_X_AUTH_TOKEN=b243614d27244d00b12b2f366b58d709 > 2016-09-20 10:14:38.761636 7f2049ffb700 20 QUERY_STRING= > ... > 2016-09-20 10:14:38.761720 7f2049ffb700 2 req 3:0.78:swift:HEAD > /swift/v1:stat_account:authorizing > 2016-09-20 10:14:38.761725 7f2049ffb700 10 failed to authorize request > 2016-09-20 10:14:38.761726 7f2049ffb700 20 handler->ERRORHANDLER: err_no=-1 > new_err_no=-1 Those logs show there was no jump to the Keystone code at all. This is because the "token_id=..." debug message [1] is absent. The sole reason I see for such behavior is that the RadosGW instance internally sees rgw_keystone_url as empty [2][3]. Are you absolutely sure that the instance that got debug_rgw to its configuration file has rgw_keystone_url properly set? I mean whether the setting is in the same section, is written in pure ASCII (without some crazy UTF characters) and so on? I saw you posted the config earlier but we really need to double check. Could you also provide output from following curl command and corresponding RadosGW's log? 401 is fully expected as we'll intensionally send an invalid token. curl -i "http://:/swift/v1" -X HEAD -H "X-Auth-Token: random_string" > > > I also have some problems > > Q1 : if use keystone, radosgw need create user and subuser? > in the case , i create admin user and admin:admin subuser , but i think it > don't need , and i rght? Yup, this is unnecessary when using the Keystone auth. > > > Q2: > And i found a phenomenon, > Once I connect keystone and ceph radosgw before, and i use " rados --pool > default.rgw.users.uid ls " > It will detail a like token uid > > but if swift response 401 > i can't find the token uid > Do you know keystone how to add token user to default.rgw.users.uid > finally , hope bellow msgs can help me to slove > anyway, thx your support greate You don't need to add anything. RadosGW will create RGWUserInfo if necessary on the first, successfully authenticated request [4]. The RADOS object will be named after the tenant ID in Keystone. Best regards, Radoslaw Zarzynski [1] https://github.com/ceph/ceph/blob/v10.2.2/src/rgw/rgw_swift.cc#L472 [2] https://github.com/ceph/ceph/blob/v10.2.2/src/rgw/rgw_swift.cc#L766-L769 [3] https://github.com/ceph/ceph/blob/v10.2.2/src/rgw/rgw_swift.h#L59-L61 [4] https://github.com/ceph/ceph/blob/v10.2.2/src/rgw/rgw_swift.cc#L413 ___ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
872 7f204a7fc700 10 failed to authorize request 2016-09-20 10:23:28.002874 7f204a7fc700 20 handler->ERRORHANDLER: err_no=-1 new_err_no=-1 2016-09-20 10:23:28.002945 7f204a7fc700 2 req 7:0.000165:swift:HEAD /swift/v1:stat_account:op status=0 2016-09-20 10:23:28.002949 7f204a7fc700 2 req 7:0.000169:swift:HEAD /swift/v1:stat_account:http status=401 2016-09-20 10:23:28.002953 7f204a7fc700 1 == req done req=0x7f204a7f6710 op status=0 http_status=401 == 2016-09-20 10:23:28.002963 7f204a7fc700 20 process_request() returned -1 2016-09-20 10:23:28.003002 7f204a7fc700 1 civetweb: 0x7f208bb0: 10.62.13.253 - - [20/Sep/2016:10:23:28 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-20 10:23:29.106811 7f20327fc700 20 RGWEnv::set(): HTTP_HOST: 10.62.9.140:7480 2016-09-20 10:23:29.106824 7f20327fc700 20 RGWEnv::set(): HTTP_ACCEPT_ENCODING: identity 2016-09-20 10:23:29.106827 7f20327fc700 20 RGWEnv::set(): HTTP_USER_AGENT: python-swiftclient-2.6.0 2016-09-20 10:23:29.106829 7f20327fc700 20 RGWEnv::set(): HTTP_X_AUTH_TOKEN: b4a89eb2819a497fab4cab003d123ee0 2016-09-20 10:23:29.106831 7f20327fc700 20 RGWEnv::set(): REQUEST_METHOD: HEAD 2016-09-20 10:23:29.106832 7f20327fc700 20 RGWEnv::set(): REQUEST_URI: /swift/v1 2016-09-20 10:23:29.106834 7f20327fc700 20 RGWEnv::set(): QUERY_STRING: 2016-09-20 10:23:29.106836 7f20327fc700 20 RGWEnv::set(): REMOTE_USER: 2016-09-20 10:23:29.106837 7f20327fc700 20 RGWEnv::set(): SCRIPT_URI: /swift/v1 2016-09-20 10:23:29.106840 7f20327fc700 20 RGWEnv::set(): SERVER_PORT: 7480 2016-09-20 10:23:29.106842 7f20327fc700 20 HTTP_ACCEPT_ENCODING=identity 2016-09-20 10:23:29.106843 7f20327fc700 20 HTTP_HOST=10.62.9.140:7480 2016-09-20 10:23:29.106844 7f20327fc700 20 HTTP_USER_AGENT=python-swiftcl ient-2.6.0 2016-09-20 10:23:29.106845 7f20327fc700 20 HTTP_X_AUTH_TOKEN=b4a89eb2819a 497fab4cab003d123ee0 2016-09-20 10:23:29.106845 7f20327fc700 20 QUERY_STRING= 2016-09-20 10:23:29.106846 7f20327fc700 20 REMOTE_USER= 2016-09-20 10:23:29.106847 7f20327fc700 20 REQUEST_METHOD=HEAD 2016-09-20 10:23:29.106848 7f20327fc700 20 REQUEST_URI=/swift/v1 2016-09-20 10:23:29.106849 7f20327fc700 20 SCRIPT_URI=/swift/v1 2016-09-20 10:23:29.106850 7f20327fc700 20 SERVER_PORT=7480 2016-09-20 10:23:29.106851 7f20327fc700 1 == starting new request req=0x7f20327f6710 = 2016-09-20 10:23:29.106867 7f20327fc700 2 req 8:0.15::HEAD /swift/v1::initializing for trans_id = tx8-0057e0 9da1-fa64-default 2016-09-20 10:23:29.106872 7f20327fc700 10 host=10.62.9.140 2016-09-20 10:23:29.106875 7f20327fc700 20 subdomain= domain= in_hosted_domain=0 in_hosted_domain_s3website=0 2016-09-20 10:23:29.106894 7f20327fc700 10 ver=v1 first= req= 2016-09-20 10:23:29.106898 7f20327fc700 10 handler=29RGWHandler_REST_Serv ice_SWIFT 2016-09-20 10:23:29.106900 7f20327fc700 2 req 8:0.48:swift:HEAD /swift/v1::getting op 3 2016-09-20 10:23:29.106903 7f20327fc700 10 op=29RGWStatAccount_ObjStore_S WIFT 2016-09-20 10:23:29.106904 7f20327fc700 2 req 8:0.53:swift:HEAD /swift/v1:stat_account:authorizing 2016-09-20 10:23:29.106917 7f20327fc700 10 failed to authorize request 2016-09-20 10:23:29.106919 7f20327fc700 20 handler->ERRORHANDLER: err_no=-1 new_err_no=-1 2016-09-20 10:23:29.106982 7f20327fc700 2 req 8:0.000131:swift:HEAD /swift/v1:stat_account:op status=0 2016-09-20 10:23:29.106986 7f20327fc700 2 req 8:0.000135:swift:HEAD /swift/v1:stat_account:http status=401 2016-09-20 10:23:29.106989 7f20327fc700 1 == req done req=0x7f20327f6710 op status=0 http_status=401 == 2016-09-20 10:23:29.106996 7f20327fc700 20 process_request() returned -1 2016-09-20 10:23:29.107033 7f20327fc700 1 civetweb: 0x7f20a400d370: 10.62.13.253 - - [20/Sep/2016:10:23:29 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 I also have some problems Q1 : if use keystone, radosgw need create user and subuser? in the case , i create admin user and admin:admin subuser , but i think it don't need , and i rght? Q2: And i found a phenomenon, Once I connect keystone and ceph radosgw before, and i use " rados --pool default.rgw.users.uid ls " It will detail a like token uid but if swift response 401 i can't find the token uid Do you know keystone how to add token user to default.rgw.users.uid finally , hope bellow msgs can help me to slove anyway, thx your support greate 2016-09-19 19:02 GMT+08:00 Radoslaw Zarzynski : > Hello, > > We definitely need more info. > > Does only HEAD-on-account fail or other requests > are affected as well? > Can we get more verbose RadosGW's log? In such > situation debug_rgw=20 might be necessary. > > Regards, > Radoslaw Zarzynski > > On Mon, Sep 19, 2016 at 12:33 PM, Orit Wasserman > wrote: > > Any ideas? > > I would guess the swift user is not created correctly but as it with > > keystone ... > > > > > > ------ Forwarded m
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hi ,Radoslaw Zarzynski Thx your reply, I add debug rgw =20 in ceph.conf , according to your suggestion and the log as following 2016-09-20 10:14:38.761600 7f2049ffb700 20 RGWEnv::set(): HTTP_HOST: 10.62.9.140:7480 2016-09-20 10:14:38.761613 7f2049ffb700 20 RGWEnv::set(): HTTP_ACCEPT_ENCODING: identity 2016-09-20 10:14:38.761616 7f2049ffb700 20 RGWEnv::set(): HTTP_USER_AGENT: python-swiftclient-2.6.0 2016-09-20 10:14:38.761618 7f2049ffb700 20 RGWEnv::set(): HTTP_X_AUTH_TOKEN: b243614d27244d00b12b2f366b58d709 2016-09-20 10:14:38.761619 7f2049ffb700 20 RGWEnv::set(): REQUEST_METHOD: HEAD 2016-09-20 10:14:38.761620 7f2049ffb700 20 RGWEnv::set(): REQUEST_URI: /swift/v1 2016-09-20 10:14:38.761622 7f2049ffb700 20 RGWEnv::set(): QUERY_STRING: 2016-09-20 10:14:38.761624 7f2049ffb700 20 RGWEnv::set(): REMOTE_USER: 2016-09-20 10:14:38.761625 7f2049ffb700 20 RGWEnv::set(): SCRIPT_URI: /swift/v1 2016-09-20 10:14:38.761631 7f2049ffb700 20 RGWEnv::set(): SERVER_PORT: 7480 2016-09-20 10:14:38.761633 7f2049ffb700 20 HTTP_ACCEPT_ENCODING=identity 2016-09-20 10:14:38.761634 7f2049ffb700 20 HTTP_HOST=10.62.9.140:7480 2016-09-20 10:14:38.761635 7f2049ffb700 20 HTTP_USER_AGENT=python-swiftcl ient-2.6.0 2016-09-20 10:14:38.761635 7f2049ffb700 20 HTTP_X_AUTH_TOKEN=b243614d2724 4d00b12b2f366b58d709 2016-09-20 10:14:38.761636 7f2049ffb700 20 QUERY_STRING= 2016-09-20 10:14:38.761637 7f2049ffb700 20 REMOTE_USER= 2016-09-20 10:14:38.761638 7f2049ffb700 20 REQUEST_METHOD=HEAD 2016-09-20 10:14:38.761638 7f2049ffb700 20 REQUEST_URI=/swift/v1 2016-09-20 10:14:38.761639 7f2049ffb700 20 SCRIPT_URI=/swift/v1 2016-09-20 10:14:38.761640 7f2049ffb700 20 SERVER_PORT=7480 2016-09-20 10:14:38.761642 7f2049ffb700 1 == starting new request req=0x7f2049ff5710 = 2016-09-20 10:14:38.761662 7f2049ffb700 2 req 3:0.20::HEAD /swift/v1::initializing for trans_id = tx3-0057e0 9b8e-fa64-default 2016-09-20 10:14:38.761667 7f2049ffb700 10 host=10.62.9.140 2016-09-20 10:14:38.761673 7f2049ffb700 20 subdomain= domain= in_hosted_domain=0 in_hosted_domain_s3website=0 2016-09-20 10:14:38.761709 7f2049ffb700 10 ver=v1 first= req= 2016-09-20 10:14:38.761713 7f2049ffb700 10 handler=29RGWHandler_REST_Serv ice_SWIFT 2016-09-20 10:14:38.761715 7f2049ffb700 2 req 3:0.74:swift:HEAD /swift/v1::getting op 3 2016-09-20 10:14:38.761719 7f2049ffb700 10 op=29RGWStatAccount_ObjStore_S WIFT 2016-09-20 10:14:38.761720 7f2049ffb700 2 req 3:0.78:swift:HEAD /swift/v1:stat_account:authorizing 2016-09-20 10:14:38.761725 7f2049ffb700 10 failed to authorize request 2016-09-20 10:14:38.761726 7f2049ffb700 20 handler->ERRORHANDLER: err_no=-1 new_err_no=-1 2016-09-20 10:14:38.761790 7f2049ffb700 2 req 3:0.000148:swift:HEAD /swift/v1:stat_account:op status=0 2016-09-20 10:14:38.761794 7f2049ffb700 2 req 3:0.000152:swift:HEAD /swift/v1:stat_account:http status=401 2016-09-20 10:14:38.761797 7f2049ffb700 1 == req done req=0x7f2049ff5710 op status=0 http_status=401 == 2016-09-20 10:14:38.761807 7f2049ffb700 20 process_request() returned -1 2016-09-20 10:14:38.761843 7f2049ffb700 1 civetweb: 0x7f207c000bb0: 10.62.13.253 - - [20/Sep/2016:10:14:38 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-20 10:14:39.860672 7f2048ff9700 20 RGWEnv::set(): HTTP_HOST: 10.62.9.140:7480 2016-09-20 10:14:39.860684 7f2048ff9700 20 RGWEnv::set(): HTTP_ACCEPT_ENCODING: identity 2016-09-20 10:14:39.860687 7f2048ff9700 20 RGWEnv::set(): HTTP_USER_AGENT: python-swiftclient-2.6.0 2016-09-20 10:14:39.860689 7f2048ff9700 20 RGWEnv::set(): HTTP_X_AUTH_TOKEN: 07dd6795e60248cab3817cac340b0532 2016-09-20 10:14:39.860691 7f2048ff9700 20 RGWEnv::set(): REQUEST_METHOD: HEAD 2016-09-20 10:14:39.860693 7f2048ff9700 20 RGWEnv::set(): REQUEST_URI: /swift/v1 2016-09-20 10:14:39.860696 7f2048ff9700 20 RGWEnv::set(): QUERY_STRING: 2016-09-20 10:14:39.860698 7f2048ff9700 20 RGWEnv::set(): REMOTE_USER: 2016-09-20 10:14:39.860699 7f2048ff9700 20 RGWEnv::set(): SCRIPT_URI: /swift/v1 2016-09-20 10:14:39.860702 7f2048ff9700 20 RGWEnv::set(): SERVER_PORT: 7480 2016-09-20 10:14:39.860703 7f2048ff9700 20 HTTP_ACCEPT_ENCODING=identity 2016-09-20 10:14:39.860705 7f2048ff9700 20 HTTP_HOST=10.62.9.140:7480 2016-09-20 10:14:39.860705 7f2048ff9700 20 HTTP_USER_AGENT=python-swiftcl ient-2.6.0 2016-09-20 10:14:39.860716 7f2048ff9700 20 HTTP_X_AUTH_TOKEN=07dd6795e602 48cab3817cac340b0532 2016-09-20 10:14:39.860717 7f2048ff9700 20 QUERY_STRING= 2016-09-20 10:14:39.860718 7f2048ff9700 20 REMOTE_USER= 2016-09-20 10:14:39.860719 7f2048ff9700 20 REQUEST_METHOD=HEAD 2016-09-20 10:14:39.860720 7f2048ff9700 20 REQUEST_URI=/swift/v1 2016-09-20 10:14:39.860720 7f2048ff9700 20 SCRIPT_URI=/swift/v1 2016-09-20 10:14:39.860721 7f2048ff9700 20 SERVER_PORT=7480 2016-09-20 10:14:39.860723 7f2048ff9700 1 == starting new request req=0x7f2048ff3710 = 2016-09-20 10:14:39.860739 7f2048ff9700 2 req 4:0.16::HEAD /swift/v1::initializing for trans_id = tx4-0057e0 9b
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hello, We definitely need more info. Does only HEAD-on-account fail or other requests are affected as well? Can we get more verbose RadosGW's log? In such situation debug_rgw=20 might be necessary. Regards, Radoslaw Zarzynski On Mon, Sep 19, 2016 at 12:33 PM, Orit Wasserman wrote: > Any ideas? > I would guess the swift user is not created correctly but as it with > keystone ... > > > -- Forwarded message -- > From: Brian Chang-Chien > Date: Mon, Sep 19, 2016 at 5:22 AM > Subject: Re: [ceph-users] swiftclient call radosgw, it always response > 401 Unauthorized > To: ceph-users@lists.ceph.com > > > no body meet this situation? Can somebody help me slove the issue, > please !!! THX > > 2016-09-16 13:02 GMT+08:00 Brian Chang-Chien : >> >> Can anyone know this problem,please help me to watch this >> >> >> 2016年9月13日 下午5:58,"Brian Chang-Chien" 寫道: >>> >>> Hi ,naga.b >>> >>> I use Ceph jewel 10.2.2 >>> my ceph.conf as follow >>> [global] >>> fsid = d056c174-2e3a-4c36-a067-cb774d176ce2 >>> mon_initial_members = brianceph >>> mon_host = 10.62.9.140 >>> auth_cluster_required = cephx >>> auth_service_required = cephx >>> auth_client_required = cephx >>> osd_crush_chooseleaf_type = 0 >>> osd_pool_default_size = 1 >>> osd_journal_size = 100 >>> [client.radosgw.gateway] >>> host = brianceph >>> keyring = /etc/ceph/ceph.client.radosgw.keyring >>> log_file = /var/log/ceph/radosgw.log >>> rgw_dns_name = brianceph >>> rgw_keystone_url = http://10.62.13.253:35357 >>> rgw_keystone_admin_token = 7bb8e26cbc714c47a26ffec3d96f246f >>> rgw_keystone_accepted_roles = admin, swiftuser >>> rgw_ketstone_token_cache_size = 200 >>> rgw_keystone_revocation_interval = 30 >>> rgw_s3_auth_use_keystone = true >>> nss_db_path = /var/ceph/nss >>> >>> and my radosgw.log >>> >>> 2016-09-13 17:42:38.638462 7efd964619c0 0 starting handler: fastcgi >>> 2016-09-13 17:42:38.638523 7efcadf9b700 0 ERROR: no socket server point >>> defined, cannot start fcgi frontend >>> 2016-09-13 17:47:33.597070 7efcdeffd700 1 == starting new request >>> req=0x7efcdeff7710 = >>> 2016-09-13 17:47:33.597329 7efcdeffd700 1 == req done >>> req=0x7efcdeff7710 op status=0 http_status=401 == >>> 2016-09-13 17:47:33.597379 7efcdeffd700 1 civetweb: 0x7efd2bb0: >>> 10.62.9.34 - - [13/Sep/2016:17:47:33 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >>> - python-swiftclient-2.6.0 >>> 2016-09-13 17:47:34.755291 7efcd700 1 == starting new request >>> req=0x7efcdfff9710 = >>> 2016-09-13 17:47:34.755443 7efcd700 1 == req done >>> req=0x7efcdfff9710 op status=0 http_status=401 == >>> 2016-09-13 17:47:34.755481 7efcd700 1 civetweb: 0x7efd48004020: >>> 10.62.9.34 - - [13/Sep/2016:17:47:34 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >>> - python-swiftclient-2.6.0 >>> 2016-09-13 17:49:04.718249 7efcdf7fe700 1 == starting new request >>> req=0x7efcdf7f8710 = >>> 2016-09-13 17:49:04.718438 7efcdf7fe700 1 == req done >>> req=0x7efcdf7f8710 op status=0 http_status=401 == >>> 2016-09-13 17:49:04.718483 7efcdf7fe700 1 civetweb: 0x7efd68001f60: >>> 10.62.9.34 - - [13/Sep/2016:17:49:04 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >>> - python-swiftclient-2.6.0 >>> 2016-09-13 17:49:05.870115 7efcde7fc700 1 == starting new request >>> req=0x7efcde7f6710 = >>> 2016-09-13 17:49:05.870280 7efcde7fc700 1 == req done >>> req=0x7efcde7f6710 op status=0 http_status=401 == >>> 2016-09-13 17:49:05.870324 7efcde7fc700 1 civetweb: 0x7efd28000bb0: >>> 10.62.9.34 - - [13/Sep/2016:17:49:05 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >>> - python-swiftclient-2.6.0 >>> 2016-09-13 17:51:32.036065 7efd157fa700 1 handle_sigterm >>> 2016-09-13 17:51:32.036099 7efd157fa700 1 handle_sigterm set alarm for 120 >>> 2016-09-13 17:51:32.036153 7efd964619c0 -1 shutting down >>> 2016-09-13 17:51:32.037977 7efd78df9700 0 monclient: hunting for new mon >>> 2016-09-13 17:51:32.038172 7efd783f6700 0 -- 10.62.9.140:0/1002906388 >> >>> 10.62.9.140:6789/0 pipe(0x7efd60016670 sd=7 :0 s=1 pgs=0 cs=0 l=1 >>> c=0x7efd60014d70).fault >>> 2016-09-13 17:51:32.906553 7efd964619c0 1 final shutdown >>> 2016-09-13 17:51:39.294948 7ff5175f29c0 0 deferred set uid:gid
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
no body meet this situation? Can somebody help me slove the issue, please !!! THX 2016-09-16 13:02 GMT+08:00 Brian Chang-Chien : > Can anyone know this problem,please help me to watch this > > 2016年9月13日 下午5:58,"Brian Chang-Chien" 寫道: > >> Hi ,naga.b >> >> I use Ceph jewel 10.2.2 >> my ceph.conf as follow >> [global] >> fsid = d056c174-2e3a-4c36-a067-cb774d176ce2 >> mon_initial_members = brianceph >> mon_host = 10.62.9.140 >> auth_cluster_required = cephx >> auth_service_required = cephx >> auth_client_required = cephx >> osd_crush_chooseleaf_type = 0 >> osd_pool_default_size = 1 >> osd_journal_size = 100 >> [client.radosgw.gateway] >> host = brianceph >> keyring = /etc/ceph/ceph.client.radosgw.keyring >> log_file = /var/log/ceph/radosgw.log >> rgw_dns_name = brianceph >> rgw_keystone_url = http://10.62.13.253:35357 >> rgw_keystone_admin_token = 7bb8e26cbc714c47a26ffec3d96f246f >> rgw_keystone_accepted_roles = admin, swiftuser >> rgw_ketstone_token_cache_size = 200 >> rgw_keystone_revocation_interval = 30 >> rgw_s3_auth_use_keystone = true >> nss_db_path = /var/ceph/nss >> >> and my radosgw.log >> >> 2016-09-13 17:42:38.638462 7efd964619c0 0 starting handler: fastcgi >> 2016-09-13 17:42:38.638523 7efcadf9b700 0 ERROR: no socket server point >> defined, cannot start fcgi frontend >> 2016-09-13 17:47:33.597070 7efcdeffd700 1 == starting new request >> req=0x7efcdeff7710 = >> 2016-09-13 17:47:33.597329 7efcdeffd700 1 == req done >> req=0x7efcdeff7710 op status=0 http_status=401 == >> 2016-09-13 17:47:33.597379 7efcdeffd700 1 civetweb: 0x7efd2bb0: >> 10.62.9.34 - - [13/Sep/2016:17:47:33 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >> - python-swiftclient-2.6.0 >> 2016-09-13 17:47:34.755291 7efcd700 1 == starting new request >> req=0x7efcdfff9710 = >> 2016-09-13 17:47:34.755443 7efcd700 1 == req done >> req=0x7efcdfff9710 op status=0 http_status=401 == >> 2016-09-13 17:47:34.755481 7efcd700 1 civetweb: 0x7efd48004020: >> 10.62.9.34 - - [13/Sep/2016:17:47:34 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >> - python-swiftclient-2.6.0 >> 2016-09-13 17:49:04.718249 7efcdf7fe700 1 == starting new request >> req=0x7efcdf7f8710 = >> 2016-09-13 17:49:04.718438 7efcdf7fe700 1 == req done >> req=0x7efcdf7f8710 op status=0 http_status=401 == >> 2016-09-13 17:49:04.718483 7efcdf7fe700 1 civetweb: 0x7efd68001f60: >> 10.62.9.34 - - [13/Sep/2016:17:49:04 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >> - python-swiftclient-2.6.0 >> 2016-09-13 17:49:05.870115 7efcde7fc700 1 == starting new request >> req=0x7efcde7f6710 = >> 2016-09-13 17:49:05.870280 7efcde7fc700 1 == req done >> req=0x7efcde7f6710 op status=0 http_status=401 == >> 2016-09-13 17:49:05.870324 7efcde7fc700 1 civetweb: 0x7efd28000bb0: >> 10.62.9.34 - - [13/Sep/2016:17:49:05 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 >> - python-swiftclient-2.6.0 >> 2016-09-13 17:51:32.036065 7efd157fa700 1 handle_sigterm >> 2016-09-13 17:51:32.036099 7efd157fa700 1 handle_sigterm set alarm for >> 120 >> 2016-09-13 17:51:32.036153 7efd964619c0 -1 shutting down >> 2016-09-13 17:51:32.037977 7efd78df9700 0 monclient: hunting for new mon >> 2016-09-13 17:51:32.038172 7efd783f6700 0 -- 10.62.9.140:0/1002906388 >> >> 10.62.9.140:6789/0 pipe(0x7efd60016670 sd=7 :0 s=1 pgs=0 cs=0 l=1 >> c=0x7efd60014d70).fault >> 2016-09-13 17:51:32.906553 7efd964619c0 1 final shutdown >> 2016-09-13 17:51:39.294948 7ff5175f29c0 0 deferred set uid:gid to >> 167:167 (ceph:ceph) >> 2016-09-13 17:51:39.295097 7ff5175f29c0 0 ceph version 10.2.2 >> (45107e21c568dd033c2f0a3107dec8f0b0e58374), process radosgw, pid 13251 >> 2016-09-13 17:51:39.318311 7ff5175e8700 0 -- :/175783115 >> >> 10.62.9.140:6789/0 pipe(0x7ff51987b9b0 sd=7 :0 s=1 pgs=0 cs=0 l=1 >> c=0x7ff519842430).fault >> 2016-09-13 17:51:39.596568 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :0 s=1 pgs=0 cs=0 l=1 >> c=0x7ff519881390).fault >> 2016-09-13 17:51:40.197109 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42233 s=1 pgs=0 cs=0 >> l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not >> 10.62.9.140:6800/11336 - wrong node! >> 2016-09-13 17:51:40.997618 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42234 s=1 pgs=0 cs=0 >> l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not >> 10.62.9.140:6800/11336 - wrong node! >> 2016-09-13 17:51:42.598080 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42235 s=1 pgs=0 cs=0 >> l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not >> 10.62.9.140:6800/11336 - wrong node! >> 2016-09-13 17:51:45.798587 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42236 s=1 pgs=0 cs=0 >> l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Can anyone know this problem,please help me to watch this 2016年9月13日 下午5:58,"Brian Chang-Chien" 寫道: > Hi ,naga.b > > I use Ceph jewel 10.2.2 > my ceph.conf as follow > [global] > fsid = d056c174-2e3a-4c36-a067-cb774d176ce2 > mon_initial_members = brianceph > mon_host = 10.62.9.140 > auth_cluster_required = cephx > auth_service_required = cephx > auth_client_required = cephx > osd_crush_chooseleaf_type = 0 > osd_pool_default_size = 1 > osd_journal_size = 100 > [client.radosgw.gateway] > host = brianceph > keyring = /etc/ceph/ceph.client.radosgw.keyring > log_file = /var/log/ceph/radosgw.log > rgw_dns_name = brianceph > rgw_keystone_url = http://10.62.13.253:35357 > rgw_keystone_admin_token = 7bb8e26cbc714c47a26ffec3d96f246f > rgw_keystone_accepted_roles = admin, swiftuser > rgw_ketstone_token_cache_size = 200 > rgw_keystone_revocation_interval = 30 > rgw_s3_auth_use_keystone = true > nss_db_path = /var/ceph/nss > > and my radosgw.log > > 2016-09-13 17:42:38.638462 7efd964619c0 0 starting handler: fastcgi > 2016-09-13 17:42:38.638523 7efcadf9b700 0 ERROR: no socket server point > defined, cannot start fcgi frontend > 2016-09-13 17:47:33.597070 7efcdeffd700 1 == starting new request > req=0x7efcdeff7710 = > 2016-09-13 17:47:33.597329 7efcdeffd700 1 == req done > req=0x7efcdeff7710 op status=0 http_status=401 == > 2016-09-13 17:47:33.597379 7efcdeffd700 1 civetweb: 0x7efd2bb0: > 10.62.9.34 - - [13/Sep/2016:17:47:33 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 > - python-swiftclient-2.6.0 > 2016-09-13 17:47:34.755291 7efcd700 1 == starting new request > req=0x7efcdfff9710 = > 2016-09-13 17:47:34.755443 7efcd700 1 == req done > req=0x7efcdfff9710 op status=0 http_status=401 == > 2016-09-13 17:47:34.755481 7efcd700 1 civetweb: 0x7efd48004020: > 10.62.9.34 - - [13/Sep/2016:17:47:34 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 > - python-swiftclient-2.6.0 > 2016-09-13 17:49:04.718249 7efcdf7fe700 1 == starting new request > req=0x7efcdf7f8710 = > 2016-09-13 17:49:04.718438 7efcdf7fe700 1 == req done > req=0x7efcdf7f8710 op status=0 http_status=401 == > 2016-09-13 17:49:04.718483 7efcdf7fe700 1 civetweb: 0x7efd68001f60: > 10.62.9.34 - - [13/Sep/2016:17:49:04 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 > - python-swiftclient-2.6.0 > 2016-09-13 17:49:05.870115 7efcde7fc700 1 == starting new request > req=0x7efcde7f6710 = > 2016-09-13 17:49:05.870280 7efcde7fc700 1 == req done > req=0x7efcde7f6710 op status=0 http_status=401 == > 2016-09-13 17:49:05.870324 7efcde7fc700 1 civetweb: 0x7efd28000bb0: > 10.62.9.34 - - [13/Sep/2016:17:49:05 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 > - python-swiftclient-2.6.0 > 2016-09-13 17:51:32.036065 7efd157fa700 1 handle_sigterm > 2016-09-13 17:51:32.036099 7efd157fa700 1 handle_sigterm set alarm for 120 > 2016-09-13 17:51:32.036153 7efd964619c0 -1 shutting down > 2016-09-13 17:51:32.037977 7efd78df9700 0 monclient: hunting for new mon > 2016-09-13 17:51:32.038172 7efd783f6700 0 -- 10.62.9.140:0/1002906388 >> > 10.62.9.140:6789/0 pipe(0x7efd60016670 sd=7 :0 s=1 pgs=0 cs=0 l=1 > c=0x7efd60014d70).fault > 2016-09-13 17:51:32.906553 7efd964619c0 1 final shutdown > 2016-09-13 17:51:39.294948 7ff5175f29c0 0 deferred set uid:gid to 167:167 > (ceph:ceph) > 2016-09-13 17:51:39.295097 7ff5175f29c0 0 ceph version 10.2.2 ( > 45107e21c568dd033c2f0a3107dec8f0b0e58374), process radosgw, pid 13251 > 2016-09-13 17:51:39.318311 7ff5175e8700 0 -- :/175783115 >> > 10.62.9.140:6789/0 pipe(0x7ff51987b9b0 sd=7 :0 s=1 pgs=0 cs=0 l=1 > c=0x7ff519842430).fault > 2016-09-13 17:51:39.596568 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :0 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).fault > 2016-09-13 17:51:40.197109 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42233 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not > 10.62.9.140:6800/11336 - wrong node! > 2016-09-13 17:51:40.997618 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42234 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not > 10.62.9.140:6800/11336 - wrong node! > 2016-09-13 17:51:42.598080 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42235 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not > 10.62.9.140:6800/11336 - wrong node! > 2016-09-13 17:51:45.798587 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42236 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not > 10.62.9.140:6800/11336 - wrong node! > 2016-09-13 17:51:52.199050 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> > 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42237 s=1 pgs=0 cs=0 l=1 > c=0x7ff519881390).connect claims to
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
Hi ,naga.b I use Ceph jewel 10.2.2 my ceph.conf as follow [global] fsid = d056c174-2e3a-4c36-a067-cb774d176ce2 mon_initial_members = brianceph mon_host = 10.62.9.140 auth_cluster_required = cephx auth_service_required = cephx auth_client_required = cephx osd_crush_chooseleaf_type = 0 osd_pool_default_size = 1 osd_journal_size = 100 [client.radosgw.gateway] host = brianceph keyring = /etc/ceph/ceph.client.radosgw.keyring log_file = /var/log/ceph/radosgw.log rgw_dns_name = brianceph rgw_keystone_url = http://10.62.13.253:35357 rgw_keystone_admin_token = 7bb8e26cbc714c47a26ffec3d96f246f rgw_keystone_accepted_roles = admin, swiftuser rgw_ketstone_token_cache_size = 200 rgw_keystone_revocation_interval = 30 rgw_s3_auth_use_keystone = true nss_db_path = /var/ceph/nss and my radosgw.log 2016-09-13 17:42:38.638462 7efd964619c0 0 starting handler: fastcgi 2016-09-13 17:42:38.638523 7efcadf9b700 0 ERROR: no socket server point defined, cannot start fcgi frontend 2016-09-13 17:47:33.597070 7efcdeffd700 1 == starting new request req=0x7efcdeff7710 = 2016-09-13 17:47:33.597329 7efcdeffd700 1 == req done req=0x7efcdeff7710 op status=0 http_status=401 == 2016-09-13 17:47:33.597379 7efcdeffd700 1 civetweb: 0x7efd2bb0: 10.62.9.34 - - [13/Sep/2016:17:47:33 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-13 17:47:34.755291 7efcd700 1 == starting new request req=0x7efcdfff9710 = 2016-09-13 17:47:34.755443 7efcd700 1 == req done req=0x7efcdfff9710 op status=0 http_status=401 == 2016-09-13 17:47:34.755481 7efcd700 1 civetweb: 0x7efd48004020: 10.62.9.34 - - [13/Sep/2016:17:47:34 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-13 17:49:04.718249 7efcdf7fe700 1 == starting new request req=0x7efcdf7f8710 = 2016-09-13 17:49:04.718438 7efcdf7fe700 1 == req done req=0x7efcdf7f8710 op status=0 http_status=401 == 2016-09-13 17:49:04.718483 7efcdf7fe700 1 civetweb: 0x7efd68001f60: 10.62.9.34 - - [13/Sep/2016:17:49:04 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-13 17:49:05.870115 7efcde7fc700 1 == starting new request req=0x7efcde7f6710 = 2016-09-13 17:49:05.870280 7efcde7fc700 1 == req done req=0x7efcde7f6710 op status=0 http_status=401 == 2016-09-13 17:49:05.870324 7efcde7fc700 1 civetweb: 0x7efd28000bb0: 10.62.9.34 - - [13/Sep/2016:17:49:05 +0800] "HEAD /swift/v1 HTTP/1.1" 401 0 - python-swiftclient-2.6.0 2016-09-13 17:51:32.036065 7efd157fa700 1 handle_sigterm 2016-09-13 17:51:32.036099 7efd157fa700 1 handle_sigterm set alarm for 120 2016-09-13 17:51:32.036153 7efd964619c0 -1 shutting down 2016-09-13 17:51:32.037977 7efd78df9700 0 monclient: hunting for new mon 2016-09-13 17:51:32.038172 7efd783f6700 0 -- 10.62.9.140:0/1002906388 >> 10.62.9.140:6789/0 pipe(0x7efd60016670 sd=7 :0 s=1 pgs=0 cs=0 l=1 c=0x7efd60014d70).fault 2016-09-13 17:51:32.906553 7efd964619c0 1 final shutdown 2016-09-13 17:51:39.294948 7ff5175f29c0 0 deferred set uid:gid to 167:167 (ceph:ceph) 2016-09-13 17:51:39.295097 7ff5175f29c0 0 ceph version 10.2.2 (45107e21c568dd033c2f0a3107dec8f0b0e58374), process radosgw, pid 13251 2016-09-13 17:51:39.318311 7ff5175e8700 0 -- :/175783115 >> 10.62.9.140:6789/0 pipe(0x7ff51987b9b0 sd=7 :0 s=1 pgs=0 cs=0 l=1 c=0x7ff519842430).fault 2016-09-13 17:51:39.596568 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :0 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).fault 2016-09-13 17:51:40.197109 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42233 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6800/11336 - wrong node! 2016-09-13 17:51:40.997618 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42234 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6800/11336 - wrong node! 2016-09-13 17:51:42.598080 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42235 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6800/11336 - wrong node! 2016-09-13 17:51:45.798587 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42236 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6800/11336 - wrong node! 2016-09-13 17:51:52.199050 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42237 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6800/11336 - wrong node! 2016-09-13 17:51:54.596518 7ff4fc10d700 0 -- 10.62.9.140:0/175783115 >> 10.62.9.140:6800/11336 pipe(0x7ff519880080 sd=8 :42238 s=1 pgs=0 cs=0 l=1 c=0x7ff519881390).connect claims to be 10.62.9.140:6800/13358 not 10.62.9.140:6
Re: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized
The parameters you configured for keystone in ceph.conf are correct? Can you provide your radosgw configuration in ceph.conf? And include radosgw.log after radosgw service restart and during swift list. Thanks & Regards, Naga Venkata From: ceph-users [mailto:ceph-users-boun...@lists.ceph.com] On Behalf Of Brian Chang-Chien Sent: Monday, September 12, 2016 11:35 AM To: ceph-users@lists.ceph.com Subject: [ceph-users] swiftclient call radosgw, it always response 401 Unauthorized Hi all I use openstack keystone to integrate with ceph radosgw for object storage But when i call "swift stat" command , it always 401 error "Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized" following is log DEBUG:keystoneclient.auth.identity.v2:Making authentication request to http://10.62.13.253:5000/v2.0/tokens INFO:requests.packages.urllib3.connectionpool:Starting new HTTP connection (1): 10.62.13.253 DEBUG:requests.packages.urllib3.connectionpool:"POST /v2.0/tokens HTTP/1.1" 200 3638 INFO:requests.packages.urllib3.connectionpool:Starting new HTTP connection (1): 10.62.9.140 DEBUG:requests.packages.urllib3.connectionpool:"HEAD /swift/v1 HTTP/1.1" 401 0 INFO:swiftclient:REQ: curl -i http://10.62.9.140:7480/swift/v1 -I -H "X-Auth-Token: 677444dfb01b41f98d786a28c84ad4e2" INFO:swiftclient:RESP STATUS: 401 Unauthorized INFO:swiftclient:RESP HEADERS: [('X-Trans-Id', 'tx1-0057d6600f-d352-default'), ('Content-Length', '12'), ('Accept-Ranges', 'bytes'), ('Content-Type', 'text/plain; charset=utf-8'), ('Date', 'Mon, 12 Sep 2016 07:58:07 GMT')] DEBUG:keystoneclient.auth.identity.v2:Making authentication request to http://10.62.13.253:5000/v2.0/tokens INFO:requests.packages.urllib3.connectionpool:Starting new HTTP connection (1): 10.62.13.253 DEBUG:requests.packages.urllib3.connectionpool:"POST /v2.0/tokens HTTP/1.1" 200 3638 INFO:requests.packages.urllib3.connectionpool:Starting new HTTP connection (1): 10.62.9.140 DEBUG:requests.packages.urllib3.connectionpool:"HEAD /swift/v1 HTTP/1.1" 401 0 INFO:swiftclient:REQ: curl -i http://10.62.9.140:7480/swift/v1 -I -H "X-Auth-Token: f67c29ebff52413a9b2f0119fbf9c60e" INFO:swiftclient:RESP STATUS: 401 Unauthorized INFO:swiftclient:RESP HEADERS: [('X-Trans-Id', 'tx2-0057d66010-d352-default'), ('Content-Length', '12'), ('Accept-Ranges', 'bytes'), ('Content-Type', 'text/plain; charset=utf-8'), ('Date', 'Mon, 12 Sep 2016 07:58:08 GMT')] ERROR:swiftclient:Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized Traceback (most recent call last): File "/usr/lib/python2.7/site-packages/swiftclient/client.py", line 1390, in _retry service_token=self.service_token, **kwargs) File "/usr/lib/python2.7/site-packages/swiftclient/client.py", line 591, in head_account http_response_content=body) ClientException: Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized ERROR:swiftclient.service:Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized Traceback (most recent call last): File "/usr/lib/python2.7/site-packages/swiftclient/service.py", line 435, in stat items, headers = get_future_result(stats_future) File "/usr/lib/python2.7/site-packages/swiftclient/service.py", line 204, in get_future_result res = f.result(timeout=timeout) File "/usr/lib/python2.7/site-packages/concurrent/futures/_base.py", line 403, in result return self.__get_result() File "/usr/lib/python2.7/site-packages/concurrent/futures/thread.py", line 55, in run result = self.fn(*self.args, **self.kwargs) File "/usr/lib/python2.7/site-packages/swiftclient/multithreading.py", line 188, in conn_fn return fn(*conn_args, **kwargs) File "/usr/lib/python2.7/site-packages/swiftclient/command_helpers.py", line 23, in stat_account headers = conn.head_account() File "/usr/lib/python2.7/site-packages/swiftclient/client.py", line 1430, in head_account return self._retry(None, head_account) File "/usr/lib/python2.7/site-packages/swiftclient/client.py", line 1390, in _retry service_token=self.service_token, **kwargs) File "/usr/lib/python2.7/site-packages/swiftclient/client.py", line 591, in head_account http_response_content=body) ClientException: Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized Account HEAD failed: http://10.62.9.140:7480/swift/v1 401 Unauthorized Could you tell me what happened ? ___ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com