Bug 1447885

Summary: Change default authentication type in ovirt-provider-ovn.conf to authentication by username
Product: [oVirt] ovirt-provider-ovn Reporter: Mor <mkalfon>
Component: providerAssignee: Dominik Holler <dholler>
Status: CLOSED CURRENTRELEASE QA Contact: Mor <mkalfon>
Severity: high Docs Contact:
Priority: low    
Version: 1.0.4CC: bugs, danken, myakove, ylavi
Target Milestone: ovirt-4.2.0Flags: rule-engine: ovirt-4.2+
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
undefined
 Story Points: ---
Clone Of: Environment:
Last Closed: 2017-12-20 11:34:16 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Network RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Mor 2017-05-04 07:28:15 UTC 
Description of problem:
Currently, ovirt-provider-ovn RPM ships MagicTokenPlugin (statix token) as default. This needs to be changed to authentication by username plugin and the configuration should work out-of-the-box.

Version-Release number of selected component (if applicable):
RHV Version 4.1.2-0.1.el7

How reproducible:
100%

Steps to Reproduce:
1. Install ovirt-provider-ovn RPM package.
2. cat /etc/ovirt-provider-ovn/ovirt-provider-ovn.conf
3. Check the original configuration.

Actual results:
MagicTokenPlugin is configured.

Expected results:
Username authentication pluging should be configured.

Additional info:

Default configuration file:
[DEFAULT]
ovn-remote=tcp:127.0.0.1:6641
dhcp-server-mac=02:00:00:00:00:00
dhcp-lease-time=86400

[OVN REMOTE]
# OVN north db: [tcp|ssl]:<ovn central ip>:<north db port, 6641 by default>
ovn-remote=tcp:127.0.0.1:6641

[DHCP]
dhcp-server-mac=02:00:00:00:00:00
dhcp-lease-time=86400

[SSL]
ssl_enabled=false
key-file=/etc/pki/ovirt-engine/keys/ovirt-provider-ovn.pem
cert-file=/etc/pki/ovirt-engine/certs/ovirt-provider-ovn.cer
cacert-file=/etc/pki/ovirt-engine/ca.pem

[AUTH]
plugin=auth.plugins.static_token:MagicTokenPlugin

[OVIRT]
host=https://ovirt-host
base=/ovirt-engine
ca-file=/etc/pki/ovirt-engine/ca.pem
#admin-role-id=def00005-0000-0000-0000-def000000005
#sso-client-id=ovirt-engine-core
#sso-client-secret=BswvPmKEzmkzrwqGjRbidZFXclxedBZ7
#admin-user-name=admin@internal
#admin-group-atrribute-name=AAA_AUTHZ_GROUP_NAME;java.lang.String;0eebe54f-b429-44f3-aa80-4704cbb16835
#admin-group-attribute-value=NetAdmin
Comment 2 Sandro Bonazzola 2017-12-20 11:34:16 UTC 
This bugzilla is included in oVirt 4.2.0 release, published on Dec 20th 2017.

Since the problem described in this bug report should be
resolved in oVirt 4.2.0 release, published on Dec 20th 2017, it has been closed with a resolution of CURRENT RELEASE.

If the solution does not work for you, please open a new bug report.