Using the SME Cloud Platform with OpenStack 1.60 and Keystone and SWAuth authentication Services

One of the Object Storage Clouds we supported early was OpenStack Swift, which continues to go from strength to strength.

We thought it was time to give a refresh update of how to setup SMEStorage SaaS with OpenStack Swift so that companies / users can easily test / work with their OpenStack Cloud using SMEStorage website and access clients prior to requesting access to our on-presmise Appliance with OpenStack support.

First a refresher on OpenStack authentication:

There are 3 modes of OpenStack authentication:

1. DevAuth: Mostly for development

2. SwAuth: swauth is purely swift authentication

3. Keystone: Keystone is for all OpenStack services and can be configured with just MySQl or it can be integrated with other Identity Management system

SME Supports swauth and Keystone.

For SWAuth

When using swauth we use the standard documented swift methods for authentication and getting the storage url ie as per:

curl -v -H 'X-Storage-User: <tenantName: userName>' -H 'X-Storage-Pass: password' http://IP Address:8080/auth/v1.0

When entering details into the Provider details page for OpenStack on SMEStorage you need to give the tenant name:username and the password. SME also requires a URL endpoint which should be in the format: http://IP Address:8080/auth/v1.0

We expect the following in the response headers

X-Storage-Url: http://storage server IP:PORT/v1/AUTH_xxxxxxxxxx
X-Storage-Token: AUTH_xxxxxxxxxx

We will use the URL and token to connect to OpenStack Swift storage
 

For Keystone:

Ideally Keystone should work as swauth but we have never seen this working correctly. To that end we access keystone making this http request:

curl -d '{"auth": {"tenantName": "username", "passwordCredentials":{"username": "thisisusername", "password": "your password"}}}' -H "Content-type: application/json" http://IP Address:5001/v2.0/tokens

We expect the response in the following JSON format and will take the public URL for swift service and the token to access your swift storage.

 "access": {
       "serviceCatalog": [
           {
               "endpoints": [
                   {
                       "adminURL": "http://IP:PORT/",
                       "internalURL": "http://IP:PORT/v1/AUTH_xxxxxxxxxx",
                       "publicURL": "http://IP:PORT/v1/AUTH_xxxxxxxxxx",
                       "region": "MyRegion"
                   }
               ],
               "endpoints_links": [],
               "name": "swift",
               "type": "object-store"
           },
       ..........
       ],
       .........
       "token": {
           "expires": "2012-09-05T15:34:18Z",
           "id": "TOKEN WE WILL USE",
           }
       }
       }
   }
}

When entering the provider details into SME we require the tenant name:username, password and keystone authorisation server ie. http://IP Address:5001/v2.0/tokens

If you  are unable to connect to the your OpenStack storage please send us the input from the above command and we will check.

Facebooktwittergoogle_plusredditpinterestlinkedinmailby feather
The following two tabs change content below.
The Leading Enterprise File Share and Sync Solution

Leave a Reply

Your email address will not be published. Required fields are marked *