Description of problem: This problem was originally reported by customer with RHOSP 13 deployment. When customer tried deployment command with custom IronicApiPolicies it failed with error [1] (I replaced rule, it is irrelevant in this case). From customer's investigation it looks like this problem is caused by the fact that openstack-ironic-api container image is shipped with /etc/ironic/policy.json in incorrect JSON format (lots of commented lines, which doesn't look like a valid JSON). It looks like this file is coming from openstack-ironic-common RPM I have decided to report this bug for RHOSP 16 first because the situation is the same there, although I didn't try to reproduce the problem. [1] Warning: Augeas[/etc/ironic/policy.json-RULE-add](provider=augeas): Loading failed for one or more files, see debug for /augeas//error output Error: /Stage[main]/Ironic::Policy/Openstacklib::Policy::Base[RULE_NAME]/Augeas[/etc/ironic/policy.json-baremetal:RULE-add]: Could not evaluate: Saving failed, see debug Steps to Reproduce: 1. Define IronicApiPolicies according to our official recommendations and run deployment command Actual results: Deployment command fails with error [1] because augeas fails to parse policy.json: https://github.com/openstack/puppet-openstacklib/blob/stable/queens/manifests/policy/base.pp#L48-L57 Expected results: Custom policies are added to /etc/ironic/policy.json inside ironic_api container and applied.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Red Hat OpenStack Platform 16.1.7 (Train) bug fix and enhancement advisory), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2021:3762