Skip to content

Add ec2authtoken credentials to default.conf#625

Merged
openshift-merge-bot[bot] merged 1 commit intoopenstack-k8s-operators:mainfrom
rabi:OSPCIX-1214
Feb 24, 2026
Merged

Add ec2authtoken credentials to default.conf#625
openshift-merge-bot[bot] merged 1 commit intoopenstack-k8s-operators:mainfrom
rabi:OSPCIX-1214

Conversation

@rabi
Copy link
Contributor

@rabi rabi commented Feb 19, 2026
edited
Loading

After OSSA-2025-002, Keystone's ec2tokens API requires authentication. This breaks CFN_SIGNAL-based software deployment signaling since the [ec2authtoken] section lacks the required auth credentials.

Add authentication credentials to the [ec2authtoken] section so that ec2tokens API calls are properly authenticated, fixing CFN_SIGNAL-based signaling.

jira: OSPCIX-1214

@openshift-ci openshift-ci bot requested review from slagle and stuggi February 19, 2026 08:22
@rabi
Copy link
Contributor Author

rabi commented Feb 19, 2026

This won't work without the tests being fixed to use HEAT_SIGNAL.

@softwarefactory-project-zuul
Copy link

softwarefactory-project-zuul bot commented Feb 19, 2026

Build failed (check pipeline). Post recheck (without leading slash)
to rerun all jobs. Make sure the failure cause has been resolved before
you rerun jobs.

https://softwarefactory-project.io/zuul/t/rdoproject.org/buildset/c94b1625a01d451a8967947792170091

✔️ openstack-k8s-operators-content-provider SUCCESS in 1h 31m 11s
heat-operator-tempest-multinode FAILURE in 1h 13m 26s

@rabi
Add ec2authtoken credentials to default.conf
559ddfd 
After OSSA-2025-002, Keystone's ec2tokens API requires
authentication. This breaks CFN_SIGNAL-based software
deployment signaling since the [ec2authtoken] section
lacks the required auth credentials.

Add authentication credentials to the [ec2authtoken]
section so that ec2tokens API calls are properly
authenticated, fixing CFN_SIGNAL-based signaling.

jira: OSPCIX-1214
Change-Id: I63a05c2a08d68d5346c5edd0cbe90662bd4c2ca5
Signed-off-by: rabi <ramishra@redhat.com>
@rabi rabi changed the title Switch default signal transport to HEAT_SIGNAL Add ec2authtoken credentials to default.conf Feb 23, 2026
@rabi
Copy link
Contributor Author

rabi commented Feb 23, 2026

/test functional

@rabi rabi requested a review from abays February 24, 2026 06:50
@rabi
Copy link
Contributor Author

rabi commented Feb 24, 2026

/cherry-pick 18.0-fr5

@openshift-cherrypick-robot
Copy link

openshift-cherrypick-robot commented Feb 24, 2026

@rabi: once the present PR merges, I will cherry-pick it on top of 18.0-fr5 in a new PR and assign it to you.

Details

In response to this:

/cherry-pick 18.0-fr5

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

abays
abays approved these changes Feb 24, 2026
View reviewed changes
Copy link
Contributor

@abays abays left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Feb 24, 2026
karelyatin
karelyatin approved these changes Feb 24, 2026
View reviewed changes
Copy link
Contributor

@karelyatin karelyatin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm
matches to config what worked locally last i tested this issue

@openshift-ci
Copy link
Contributor

openshift-ci bot commented Feb 24, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: abays, karelyatin, rabi

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-merge-bot openshift-merge-bot bot merged commit 771b160 into openstack-k8s-operators:main Feb 24, 2026
7 checks passed
@openshift-cherrypick-robot
Copy link

openshift-cherrypick-robot commented Feb 24, 2026

@rabi: new pull request created: #626

Details

In response to this:

/cherry-pick 18.0-fr5

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Feb 24, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@abays abays abays approved these changes

@karelyatin karelyatin karelyatin approved these changes

@slagle slagle Awaiting requested review from slagle

@stuggi stuggi Awaiting requested review from stuggi

Assignees

@abays abays

@karelyatin karelyatin

Labels

approved lgtm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@rabi @openshift-cherrypick-robot @abays @karelyatin