New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fenet keys and docker image/container #163

Open

AlvaroVega opened this issue Oct 8, 2020 · 1 comment

Member

AlvaroVega commented Oct 8, 2020 •

edited

Loading

It seems fernet keys are fixed at image creation.

Once a day docker container is rotating fernet keys.

Some problems in HA balanced scenarios could happend if nodes does not share fernet keys or uses sticky sessions.

https://docs.openstack.org/keystone/pike/admin/identity-fernet-token-faq.html

How enable sticky sessions: https://thisinterestsme.com/haproxy-sticky-sessions/
A workaround could be not rotate fernet keys by default.

AlvaroVega mentioned this issue

ensure fernet-keys folder permissions #170

Merged

Member Author

AlvaroVega commented Dec 17, 2020

Doc about this issue was added in https://github.com/telefonicaid/fiware-keystone-spassword#fernet-keys-and-ha

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment