Bug 852843 - rhc domain create doesn't present the wizard for creating an ssh key
Summary: rhc domain create doesn't present the wizard for creating an ssh key
Keywords:
Status: CLOSED UPSTREAM
Alias: None
Product: OKD
Classification: Red Hat
Component: oc
Version: 2.x
Hardware: x86_64
OS: Linux
unspecified
medium
Target Milestone: ---
: ---
Assignee: Clayton Coleman
QA Contact: libra bugs
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2012-08-29 18:26 UTC by Luke Meyer
Modified: 2015-05-15 02:04 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-08-31 21:29:42 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description Luke Meyer 2012-08-29 18:26:28 UTC
Description of problem:
When I initially create a domain with the admin user and the .openshift/express.conf, I don't get an ssh key created. Thus I can't create any apps unless I manually upload an ssh key.

Basically, the problem ("feature") is that rhc doesn't run the setup wizard if the user has a .openshift/express.conf. The public instance is the default so that's not a problem outside yet. Our devenv sets up /etc/openshift/express.conf, so it's not an issue there either.

So the use case here is for on-premise. With an on-premise installation, the user may not be able to set up /etc/openshift/express.conf; they may have to use ~/.openshift/express.conf in order to connect to the broker in the first place. In that case, they'll never get a wizard, and will be confused when they try to follow the same process they used on the public instance.

Version-Release number of selected component (if applicable):
rhc-0.98.3-1.el6_3.noarch

Steps to Reproduce:
1. Set up a new user on an openshift instance (admin on devenv is fine as a no-op). 
2. Configure ~/.openshift/express.conf to point to that instance.
3. Run rhc domain create

#########################################################3  
Actual results:
[root@broker ~]# rhc domain create -n test

Creating domain with namespace 'test'

Password: *****

RESULT:
Success!
You may now create an application using the 'rhc app create' command

[root@broker ~]# rhc app create -a testapp -t php-5.3
Password: *****

Creating application: testapp in test
Now your new domain name is being propagated worldwide (this might take a minute)...
The authenticity of host 'testapp-test.example.com (10.11.235.81)' can't be established.
RSA key fingerprint is 2e:98:19:ff:dc:be:72:0a:a2:a3:8b:7c:ba:e5:69:a3.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'testapp-test.example.com,10.11.235.81' (RSA) to the list of known hosts.
4f46f7f4fec8409a844f4b914fac10.com's password: 
Permission denied, please try again.

#########################################################
Expected results:

Wizard should have come up on that first step and created an ssh key for ya.

Additional info:

Not sure quite how to resolve in the end. 
* How about allowing the user to enter the server they want to contact?
* Or, just check when doing domain stuff if they have an ssh key and go through the wizard if they don't.

We can work around it for now but I think we need resolution before shipping.

Comment 1 John (J5) Palmieri 2012-08-31 21:04:37 UTC
This needs to be a complete story.  Domains aren't linked to ssh keys anymore.  The previous behaviour was a side effect of the api requiring both a key and namespace to add a domain.  In normal operation on the public openshift server this would only happen if the user declined to upload or generate ssh key, or in the extreme case, deleted their ssh key so it isn't much of an issue and can be fixed by running rhc setup.  Checking for ssh keys on each command is a slow procedure that would only show up in very small cases.

For on-premise I can see this being an issue, especially if there are multiple on-premise servers.  The solution is going to need a whole cycle to complete.  We need to create an rhc that works for on-premise but is not onerous for OpenShift people to use.  I'm going to create a story and then close this upstream.


Note You need to log in before you can comment on or make changes to this bug.