Fix error validate token when run cron trigger

A trust client can't do validate token when run cron trigger This patch will fix that. Change-Id: I793fbfec03032d9ff7137c11becb6d1c18ec54bc Closes-Bug: #1843175
2019-09-08 20:32:25 +07:00 · 2019-09-08 20:32:25 +07:00 · 51b7dd0c6d
commit 51b7dd0c6d
parent 7698c3def0
1 changed files with 6 additions and 2 deletions
--- a/mistral/utils/openstack/keystone.py
+++ b/mistral/utils/openstack/keystone.py
@ -223,8 +223,12 @@ def obtain_service_catalog(ctx):
                "'trust_id' must be provided in the admin context."
            )

-        trust_client = client_for_trusts(ctx.trust_id)
-        token_data = trust_client.tokens.get_token_data(
+        # trust_client = client_for_trusts(ctx.trust_id)
+        # Using trust client, it can't validate token
+        # when cron trigger running because keystone policy
+        # don't allow do this. So we need use admin client to
+        # get token data
+        token_data = _admin_client().tokens.get_token_data(
            token,
            include_catalog=True
        )