Bug 1352867 - OSP refresh fails with Policy doesn't allow os_compute_api:os-availability-zone:detail to be performed.
Summary: OSP refresh fails with Policy doesn't allow os_compute_api:os-availability-zo...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat CloudForms Management Engine
Classification: Red Hat
Component: Providers
Version: 5.6.0
Hardware: Unspecified
OS: Unspecified
urgent
high
Target Milestone: GA
: 5.7.0
Assignee: Sam Lucidi
QA Contact: Ola Pavlenko
URL:
Whiteboard: openstack
: 1369901 (view as bug list)
Depends On:
Blocks: 1354503 1380029
TreeView+ depends on / blocked
 
Reported: 2016-07-05 10:17 UTC by ncatling
Modified: 2019-12-16 06:01 UTC (History)
16 users (show)

Fixed In Version: 5.7.0.0
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
: 1354503 (view as bug list)
Environment:
Last Closed: 2017-01-11 19:52:24 UTC
Category: ---
Cloudforms Team: ---
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description ncatling 2016-07-05 10:17:54 UTC 
Description of problem:
Skyscape hosted RHEL OSP8 provider refresh failing with:
Policy doesn't allow os_compute_api:os-availability-zone:detail to be performed.

Version-Release number of selected component (if applicable):
cfme-5.6.0.13
RHEL OSP 8

How reproducible:

Steps to Reproduce:
1. Add provider
2. Refresh
3.

Actual results:
Refresh fails as above.


Expected results:
Refresh successfully.


Additional info:

Provider refresh successful with cfme-5.5.4.2 but fails with latest. Full error below:

[----] E, [2016-07-05T05:15:22.112534 #11801:10f7994] ERROR -- : excon.error     #<Excon::Errors::Forbidden: Expected(200) <=> Actual(403 Forbidden)
excon.error.response
  :body          => "{\"forbidden\": {\"message\": \"Policy doesn't allow os_compute_api:os-availability-zone:detail to be performed.\", \"code\": 403}}"
  :cookies       => [
  ]
  :headers       => {
    "Content-Length"               => "123"
    "Content-Type"                 => "application/json; charset=UTF-8"
    "Date"                         => "Tue, 05 Jul 2016 09:15:22 GMT"
    "Vary"                         => "X-OpenStack-Nova-API-Version"
    "X-Compute-Request-Id"         => "req-b2706cf3-2626-43a8-82a7-8c6b09999541"
    "X-Openstack-Nova-Api-Version" => "2.1"
  }
  :host          => "beta.openstack.skyscapecloud.com"
  :local_address => "192.168.25.132"
  :local_port    => 49476
  :path          => "/v2.1/988f47cb5a634632baca8760b606e5b1/os-availability-zone/detail.json"
  :port          => 13774
  :reason_phrase => "Forbidden"
  :remote_ip     => "51.179.196.242"
  :status        => 403
  :status_line   => "HTTP/1.1 403 Forbidden\r\n"
>
Comment 11 Edu Alcaniz 2016-09-20 07:51:53 UTC 
hi, could you give us update of this BZ please. it seems blocks others important for my customer.
Comment 13 Ronnie Rasouli 2016-10-05 08:25:15 UTC 
verified on 5.7.0.3 --> error does not show up, refresh works
Comment 14 Ladislav Smola 2016-10-21 10:45:25 UTC 
*** Bug 1369901 has been marked as a duplicate of this bug. ***
Note You need to log in before you can comment on or make changes to this bug.