Rebuild to update [service_user] config to use the service domain.
This was fixed in charm-helpers.
The keystone charm currently creates two service users, one for the
service domain (for v3 authentication), and the other for the default
domain (for v2 authentication). The [service_user] config needs to
use the service domain.
This patch configures ironic-conductor to send a service token along
with the received user token on requests to other services. This allow
those other services to accept the request even if the user token has
been invalidated since received by Ironic. Also with this patch Ironic
will accept request from other services with invalid user tokens but
valid service tokens.
Update src/build.lock to get backported patches into
charm-helpers@stable/xena
Closes-Bug: #1992840
Change-Id: Ie94b5ce9ba9d015a31a78bb71ce7ca786377d6d9
(cherry picked from commit c7dda3f3a8c4b3e5445c727590eb44e4a6482cc3)
(cherry picked from commit aa73b57b9c4bffd376ca65869df964bc205accef)
This config option allows operators to increase the duration of
temporary URLs handed to ironic-python-agent to download images when
using the 'direct' deployment interface[0].
The rendered file (ironic.conf) will only include
[glance].swift_temp_url_duration when it's overriden by the
operator, otherwise the upstream's default is used by omitting the key
defition.
Tox 4.0.0 was recently released and it has several breaking changes.
We pin to < 4.0.0 here. We are planning to move forward only on the
master charm branches.
Tox is also pinned to < 4.0.0 for stable branches in upstream
openstack-zuul-jobs as well as in zosci-config. However, the
requires= section in the charm's tox.ini file ends up installing
tox>4, wiping out the zuul-pinned tox<4 that was already installed
installed. This patch fixes that.
The build.lock branch points to master which means that the layer is not
locked. Lock the layers to the commit hash instead; this ensures
reproducible builds as much as possible.