-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fenet keys and docker image/container #163
Comments
Doc about this issue was added in https://github.com/telefonicaid/fiware-keystone-spassword#fernet-keys-and-ha |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
It seems fernet keys are fixed at image creation.
Once a day docker container is rotating fernet keys.
Some problems in HA balanced scenarios could happend if nodes does not share fernet keys or uses sticky sessions.
https://docs.openstack.org/keystone/pike/admin/identity-fernet-token-faq.html
How enable sticky sessions: https://thisinterestsme.com/haproxy-sticky-sessions/
A workaround could be not rotate fernet keys by default.
The text was updated successfully, but these errors were encountered: