Public bug reported: Keystone log is also unhelpful. All we got is
"ERROR idp _sign_assertion Error when signing assertion, reason: [Errno 2] No such file or directory" When the xmlsec1 package is absent. We may need to add a check here https://github.com/openstack/keystone/blob/master/keystone/federation/idp.py#L421 to see if CONF.saml.xmlsec1_binary exist. If absent, we just to provide a more helpful log entry. Steps to reproduce: 1. Install devstack and enable federation. 2. Uninstall the xmlsec1 package 3. Try to authenticate via federation and you'll get a HTTP 500 error and the corresponding log entry in keystone.log ** Affects: keystone Importance: Undecided Status: New -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Identity (keystone). https://bugs.launchpad.net/bugs/1750917 Title: Keystone returns a HTTP 500 error if xmlsec CLI is missing Status in OpenStack Identity (keystone): New Bug description: Keystone log is also unhelpful. All we got is "ERROR idp _sign_assertion Error when signing assertion, reason: [Errno 2] No such file or directory" When the xmlsec1 package is absent. We may need to add a check here https://github.com/openstack/keystone/blob/master/keystone/federation/idp.py#L421 to see if CONF.saml.xmlsec1_binary exist. If absent, we just to provide a more helpful log entry. Steps to reproduce: 1. Install devstack and enable federation. 2. Uninstall the xmlsec1 package 3. Try to authenticate via federation and you'll get a HTTP 500 error and the corresponding log entry in keystone.log To manage notifications about this bug go to: https://bugs.launchpad.net/keystone/+bug/1750917/+subscriptions -- Mailing list: https://launchpad.net/~yahoo-eng-team Post to : [email protected] Unsubscribe : https://launchpad.net/~yahoo-eng-team More help : https://help.launchpad.net/ListHelp
