2092879 – [RHOSP 13.0.16] Can't delete encrypted volume to due Barbican error [4xx Client error: Not found: Sorry but your secret is in another castle]

Bug 2092879 - [RHOSP 13.0.16] Can't delete encrypted volume to due Barbican error [4xx Client error: Not found: Sorry but your secret is in another castle]

Summary: [RHOSP 13.0.16] Can't delete encrypted volume to due Barbican error [4xx Clie...

Keywords:
Status:	CLOSED DUPLICATE of bug 2026029
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-barbican
Sub Component:
Version:	13.0 (Queens)
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Douglas Mendizábal
QA Contact:	Jeremy Agee
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2022-06-02 13:21 UTC by James Mittermair
Modified:	2022-06-23 15:39 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2022-06-23 15:39:16 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	OSP-15505	0	None	None	None	2022-06-02 13:37:09 UTC

Description James Mittermair 2022-06-02 13:21:06 UTC

Description of problem:
Our customer is unable to delete an encrypted volume due to the above error in the issue.

It is possible the issue is due to the environment having another domain that the project/user resides in that created the Barbican secret.

Version-Release number of selected component (if applicable):
13.0.16

How reproducible:
Always

Steps to Reproduce:
(Wasn't able to reproduce this on a regular environment in a single project, so believe this must have to do with a project across domains).
1. Attempt to delete an encrypted volume either as the DEFAULT/admin account, or as the domain/${secret-owner}
2. The secret volume fails to delete.

Actual results:
- User tries to delete the encrypted volume
- Cinder reports a HTTP 200 OK for confirming the volume exists, and a HTTP 202 Accepted for the request to delete the volume.
- The request for deletion then fails due to the Barbican error.

Expected results:
- We expect the encrypted volume at least to delete, and if Keystone notifications are being listened on [1], we also expect the secret to be self-cleaned.

Additional info:
- See private notes.

Comment 4 Douglas Mendizábal 2022-06-23 15:39:16 UTC


*** This bug has been marked as a duplicate of bug 2026029 ***

Note You need to log in before you can comment on or make changes to this bug.