Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: RHDG 8.4.2 GA
Affects Version/s: RHDG Operator CSV 8.4.2 GA
Component/s: Helm Chart
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
Target Release:

RHDG 8.4.2 GA
Workaround:

Workaround Exists
Workaround Description:

Hide

Uninstall and reinstall the Helm chart with the deploy.security.batch value.

Show
Uninstall and reinstall the Helm chart with the deploy.security.batch value.
Git Pull Request:
https://github.com/infinispan/infinispan-helm-charts/pull/69

SFDC Cases Counter:
SFDC Cases Links:

Description

The Helm Chart generates a secret on Helm install containing the content of deploy.security.batch as well as credentials required by the monitoring endpoint. If deploy.security.batch is empty, then a default user "developer" is created. Both the "developer" user and the "monitor" user have a password value that is generated by Helm.

In order to prevent the generated password from being regenerated on calls to Helm Upgrade, the Secret is only generated if {{ .Release.IsInstall}}. Consequently, attempts to update deploy.security.batch on upgrade will be ignored as the old Secret is used.

In order to support the below workflow, we need to refactor how credentials are managed:

1.helm install -n helm datagrid . --set deploy.security.batch="user create djavan -p originalPass"
2. helm upgrade -n helm datagrid . --set deploy.security.batch="user create djavan -p newPass"

Attachments

Activity

People

Assignee:: Vittorio Rigamonti

Reporter:: Ryan Emerson

Tester:: Fabrizio Asta

Votes:: 2 Vote for this issue

Watchers:: 8 Start watching this issue

Dates

Created:: 2023/03/02 10:30 AM

Updated:: 2023/08/23 9:01 AM

Resolved:: 2023/03/23 10:58 AM