Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Minor
Fix Version/s: 1.12.2, 1.11.4, 1.10.6
Affects Version/s: None
Component/s: None
Labels:

Blocked:
False
Blocked Reason:
None
Ready:
False
Release Note Text:

Hide
Before this update, when a ROSA cluster with GitOps Operator installed and having an ArgoCD instance with dex based SSO configuration, when the cluster resumes back from an hibernation, it was not possible to login to the ArgoCD web console UI and the login screen would report an error about invalid redirect URI configured in the Dex configuration. This update fixes the issue by having the right dex redirect url updated in the ArgoCD configuration every time the ArgoCD server route is updated.

Show
Before this update, when a ROSA cluster with GitOps Operator installed and having an ArgoCD instance with dex based SSO configuration, when the cluster resumes back from an hibernation, it was not possible to login to the ArgoCD web console UI and the login screen would report an error about invalid redirect URI configured in the Dex configuration. This update fixes the issue by having the right dex redirect url updated in the ArgoCD configuration every time the ArgoCD server route is updated.
Git Pull Request:
https://github.com/argoproj-labs/argocd-operator/pull/1317
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

    After a ROSA clsuter comes out of hibernate we are unable to login to our Gitops instances if they are using Openshift as the backing SSO

Version-Release number of selected component (if applicable):

    4.14+

How reproducible:

Hibernate a cluster with gitops and attempt to login to the gitops instance on wake up

Steps to Reproduce:

    1.
    2.
    3.

Actual results:

Failed to query provider "https://openshift-gitops-server-openshift-gitops.apps.rhsaia.vg6c.p1.openshiftapps.com/api/dex": oidc: issuer did not match the issuer returned by provider, expected "https://openshift-gitops-server-openshift-gitops.apps.rhsaia.vg6c.p1.openshiftapps.com/api/dex" got "https://openshift-gitops-server/api/dex"

So somehow the clusters domain information is not being populated

Expected results:

Successful Login

Additional info:

  Did some digging and the issue is the `argocd-cm` is not be populated correctly with the url. But it can be fixed by restarting the `openshift-gitops-operator-controller-manager` pod in the `openshift-gitops-operator` namespace then the `openshift-gitops-dex-server` and `openshift-gitops-server` pods in the `openshift-gitops` namespace

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

ScreenShot 2024-04-26 at 08.16.42@2x.png
2024/04/26 12:19 PM
448 kB
Anupam Sengupta

is related to

GITOPS-3736 UI not available: oidc: issuer did not match the issuer returned by provider,

Closed

links to

openshift/openshift-docs#75482: RHDEVDOCS-6044: Content creation for GitOps 1.12.2 RN

openshift/openshift-docs#75485: RHDEVDOCS-6045: Content creation for GitOps 1.11.4 RN

RHSA-2024:130830 Openshift GitOps 1.12.2 - Bug Fixes and Argo CD UI security update

RHSA-2024:130841 Openshift GitOps 1.11.4 - Bug Fixes and Argo CD UI security update

Assignee:: Anand Francis Joseph

Reporter:: James Land

Votes:: 1 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2024/04/02 5:30 PM

Updated:: 2024/05/16 3:18 PM

Resolved:: 2024/05/02 2:24 PM

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Hide