Support for ssh auth to VMs via public key or password
Some of tempest tests use ssh access to the VM to perform extra checks. In the current implementation ssh authentication is based only on username and password. Password injection in nova is an optional feature, and real life environment are more likely to use public-key authentication for improved security. This blueprint delivers supports for public key authentication, while maintaining the original password-based implementation as well.
Blueprint information
- Status:
- Complete
- Approver:
- David Kranz
- Priority:
- Medium
- Drafter:
- Andrea Frittoli
- Direction:
- Approved
- Assignee:
- Andrea Frittoli
- Definition:
- Approved
- Series goal:
- Accepted for kilo
- Implementation:
-
Implemented
- Milestone target:
-
kilo-rc
- Started by
- Giulio Fidente
- Completed by
- Ghanshyam Mann
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
add bp:ssh-
Addressed by: https:/
WIP: Add new multi ssh configuration options
Addressed by: https:/
Define validation_
Addressed by: https:/
WIP - Add create_test_server function
Addressed by: https:/
WIP - Create shared ssh verification by extending RemoteClient
Addressed by: https:/
DO NOT MERGE- Test ssh validation in the gate
Addressed by: https:/
DO NOT MERGE - test ssh-auth-strategy in the gate
Addressed by: https:/
Add or change default value some configs.
Gerrit topic: https:/
Addressed by: https:/
Add new config option to globally trigger resource validation
Gerrit topic: https:/
Addressed by: https:/
Support floating IP and configurable auth methods
Addressed by: https:/
Migrate telemetry tests to the ssh-auth-strategy
Addressed by: https:/
Migrate volume tests to the ssh-auth-strategy
Addressed by: https:/
WIP - Migrate scenario tests ssh-auth-strategy
Addressed by: https:/
Update configuration options ssh-auth-strategy
Gerrit topic: https:/
Addressed by: https:/
Add a PINGABLE and a SSHABLE waiters
Addressed by: https:/
Update the docs on ssh validation
