Many thanks Alvaro. I have modified and still have the same issue (see below). Could really do with a list of checks to be able to find out which components of the radosgw are running correctly and which are not. # radosgw-admin subuser create --uid=gwuser1 --subuser=gwuser1:swift --access=full { "user_id": "gwuser1", "display_name": "{Rados Gateway User1}", "email": "", "suspended": 0, "max_buckets": 1000, "auid": 0, "subusers": [ { "id": "gwuser1:swift", "permissions": "full-control"}], "keys": [ { "user": "gwuser1", "access_key": "B5CL8KIB8LYH55FDPYPS", "secret_key": "B5\/EEMuTaTkSU5sS1zol2OknBPch04ZZdh86GGTA"}], "swift_keys": [ { "user": "gwuser1:swift", "secret_key": "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K"}], "caps": []} # swift -V 1.0 -A http://10.40.99.165/auth -U gwuser1:swift -K "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K" post chtest Auth GET failed: http://10.40.99.165:80/auth/ 403 Forbidden From: Alvaro Izquierdo Jimeno [mailto:aizquierdo@xxxxxxxx] Hi, Maybe you forgot some step when creating the subuser, because you have empty the subusers field, and you need an id and permisssions…. Something like that: "subusers": [ { "id": " gwuser1:swift", "permissions": "full-control"}], I think you need to do this step sudo radosgw-admin subuser create --uid=johndoe --subuser=johndoe:swift --access=full De: ceph-users-bounces@xxxxxxxxxxxxxx [mailto:ceph-users-bounces@xxxxxxxxxxxxxx] En nombre de Howarth, Chris Hi – I “think” I have configured the rados gateway correctly on a RHEL6 server using httpd-2.2.15-28.el6_4.x86_64, but an unable to connect and am having a hard time tracking down where the problem is. I am also unclear as to what to check for to validate my config. In particular if I try to connect from a host: # swift -V 1.0 -A http://10.40.99.165/auth -U gwuser1:swift -K "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K" post chtest Auth GET failed: http://10.40.99.165:80/auth/ 403 Forbidden The relevant configuration info is below. Any pointers would be very much appreciated (and really cheer up my Friday). # radosgw-admin user info --uid=gwuser1 { "user_id": "gwuser1", "display_name": "{Rados Gateway User1}", "email": "", "suspended": 0, "max_buckets": 1000, "auid": 0, "subusers": [], "keys": [ { "user": "gwuser1", "access_key": "B5CL8KIB8LYH55FDPYPS", "secret_key": "B5\/EEMuTaTkSU5sS1zol2OknBPch04ZZdh86GGTA"}], "swift_keys": [ { "user": "gwuser1:swift", "secret_key": "kVcKPg1QFu73emgrP7w6JrFs3tvZ4+gLISW+703K"}], "caps": []} # tail -30 /etc/httpd/conf/httpd.conf # The first VirtualHost section is used for requests without a known # server name. # #FastCgiExternalServer /var/www/s3gw.fcgi -socket /tmp/radosgw.sock <VirtualHost *:80> ServerAdmin chris.howarth@xxxxxxxx DocumentRoot /var/www ServerName e8c3-dl360g7-09.nam.nsroot.net # ErrorLog logs/dummy-host.example.com-error_log # CustomLog logs/dummy-host.example.com-access_log common RewriteEngine On RewriteRule ^/([a-zA-Z0-9-_.]*)([/]?.*) /s3gw.fcgi?page=$1¶ms=$2&%{QUERY_STRING} [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L] <IfModule mod_fastcgi.c> <Directory /var/www> Options +ExecCGI AllowOverride All SetHandler fastcgi-script Order allow,deny Allow from all AuthBasicAuthoritative Off </Directory> FastCgiExternalServer /var/www/s3gw.fcgi -socket /tmp/radosgw.sock </IfModule> AllowEncodedSlashes On ErrorLog /var/log/httpd/error.log CustomLog /var/log/httpd/access.log combined ServerSignature Off </VirtualHost> # cat /var/www/s3gw.fcgi #!/bin/sh exec /usr/bin/radosgw -c /etc/ceph/ceph.conf -n client.radosgw.gateway __________________________ Chris Howarth OS Platforms Engineering Citi Architecture & Technology Engineering (t) +44 (0) 20 7508 3848 (f) +44 (0) 20 7508 0964 (mail-drop) CGC-06-3A |
_______________________________________________ ceph-users mailing list ceph-users@xxxxxxxxxxxxxx http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
