Always check keystone using http

The check to $service_port must be done using http. It's $KEYSTONE_SERVICE_PORT that may use either the http or https protocol. partial blueprint devstack-https Change-Id: I8ae081e9710c54396b765210336a7de331947086
2014-06-11 17:52:49 +01:00 · 2014-06-11 17:52:49 +01:00 · be4c953e5a
commit be4c953e5a
parent 4fcda870e6
1 changed files with 4 additions and 1 deletions
--- a/lib/keystone
+++ b/lib/keystone
@ -446,7 +446,10 @@ function start_keystone {
    fi

    echo "Waiting for keystone to start..."
-    if ! timeout $SERVICE_TIMEOUT sh -c "while ! curl --noproxy '*' -k -s $KEYSTONE_AUTH_PROTOCOL://$SERVICE_HOST:$service_port/v$IDENTITY_API_VERSION/ >/dev/null; do sleep 1; done"; then
+    # Check that the keystone service is running. Even if the tls tunnel
+    # should be enabled, make sure the internal port is checked using
+    # unencryted traffic at this point.
+    if ! timeout $SERVICE_TIMEOUT sh -c "while ! curl --noproxy '*' -k -s http://$KEYSTONE_SERVICE_HOST:$service_port/v$IDENTITY_API_VERSION/ >/dev/null; do sleep 1; done"; then
        die $LINENO "keystone did not start"
    fi