Adds keymgr config to cinder

Without this config being set here the cinder services will make requests to http://localhost:5000/v3 for keymgr auth. While barbican is not configured within the environment this change simply allows cinder to auth to keystone when needed instead of throwing an error. This change will have a greater impact later if we choose to support barbican and encrypted volumes but for now its aimed at fixing intermitent errors. Implements: blueprint liberty-release Change-Id: I7a07f23523721e3c9de340096f97ebce60f0e333 Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
2015-10-23 08:50:17 -05:00 · 2015-10-23 08:50:17 -05:00 · c4619a7568
commit c4619a7568
parent 9fc2b0727a
1 changed files with 3 additions and 0 deletions
--- a/playbooks/roles/os_cinder/templates/cinder.conf.j2
+++ b/playbooks/roles/os_cinder/templates/cinder.conf.j2
@ -127,6 +127,9 @@ lock_path = /var/lock/cinder
 profiler_enabled = {{ cinder_profiler_enabled }}
 trace_sqlalchemy = {{ cinder_profiler_trace_sqlalchemy }}

+[keymgr]
+encryption_auth_url = {{ keystone_service_internaluri }}/v3
+
 [keystone_authtoken]
 insecure = {{ keystone_service_internaluri_insecure | bool }}
 auth_plugin = {{ cinder_keystone_auth_plugin }}