Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: None
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

The template secret created by CCO lacks region. ie. `region = us-west-2`

    awsSTSCredsTemplate = `[default]
sts_regional_endpoints = regional
role_arn = %s
web_identity_token_file = %s`
)

We want ability to specify region in the generated secret when operators are installed using standardized flow for STS which creates credential requests providing ARN

Manually adding this fixes error "'error to get repo options: error to get repo credentials: error get
s3 credentials: failed to refresh cached credentials, failed to retrieve credentials,
operation error STS: AssumeRoleWithWebIdentity, https response error StatusCode: 0, RequestID: , request send failed, Post "https://sts/..amazonaws.com/": dial
tcp: lookup sts..amazonaws.com: no such host'" https://issues.redhat.com/browse/OADP-5354#:~:text=%27error%20to%20get,no%20such%20host%27

blocks

CM-442 [sts Regression] Failed to issue certs with ACME Route53 dns01 solver in AWS STS env when pod-identity-webhook is not used

To Do

OADP-5354 BR 5.0.3 | AWS STS env | EFS+EBS + Offline OADP | Backup is failing on validation PartiallyFailed

ASSIGNED

is depended on by

OADP-5354 BR 5.0.3 | AWS STS env | EFS+EBS + Offline OADP | Backup is failing on validation PartiallyFailed

ASSIGNED

Assignee:: Unassigned

Reporter:: Tiger Kaovilai

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2024/12/11 8:52 PM

Updated:: 2024/12/13 12:30 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates