I've seen this for exactly one user. When coren tries to log in, keystone throws an exception:
Traceback (most recent call last):File "/usr/lib/python2.7/dist-packages/keystone/common/wsgi.py", line 239, in __call__ result = method(context, **params) File "/usr/lib/python2.7/dist-packages/keystone/auth/controllers.py", line 377, in authenticate_for_token self.authenticate(context, auth_info, auth_context) File "/usr/lib/python2.7/dist-packages/keystone/auth/controllers.py", line 502, in authenticate auth_context) File "/usr/lib/python2.7/dist-packages/keystone/auth/plugins/wmtotp.py", line 91, in authenticate secret = cur.fetchone()
TypeError: 'NoneType' object has no attribute 'getitem'
From adding some debug lines, it looks like it is selecting for username 'coren' (no hits) rather than for user 'Coren' (which gets the one expected hit.)
Can we make that mysql selection case-insensitive, or otherwise figure out why it's playing fast-and-loose with the initial capital letter?