Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Normal
Fix Version/s: Logging 5.8.0
Affects Version/s: Logging 5.7.z, Logging 5.6.z
Component/s: Log Collection
Labels:
- devel_ack+
- no-rn

Blocked:
False
Blocked Reason:
None
Ready:
False
Docs QE Status:
NEW
QE Status:
NEW
Intelligence Requested:
Market:

Sprint:
Log Collection - Sprint 239, Log Collection - Sprint 240, Log Collection - Sprint 241

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Description of problem:

Clone of the fix for 5.6 and 5.7

After updating the openshift logging operator from channel stable-5.5, the operator is mounting all secrets with AWS role ARN to the same collector-sts-token volume which makes it non-unique.

How reproducible:

Customer is using fluentd & forwarding logs from namespaces to CloudWatch from an STS enabled cluster (not using ES)

Steps to Reproduce:

deploy STS enabled cluster
install CLO 5.8
successfully deploy ClusterLogForwarding from CloudWatch using fluentd

Actual results:

Multiple roles are no longer authenticated

Expected results:

Work the same as in the 5.5 version, allowing multiple roles to authenticate

clones

LOG-4368 [release-5.7] sts cloudwatch issues after upgrading from 5.5

Closed

links to

openshift/cluster-logging-operator#2101: LOG-4371: Fix for fluentd sts cloudwatch using multiple roles

mentioned on

Merge request - Updated US source to: 768d78c Merge pull request #2101 from cahartma/LOG-4371-fluentd-sts-roles-release-5.8

Assignee:: Casey Hartman

Reporter:: Noreen Carmichael

QA Contact:: Anping Li

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/07/19 7:52 PM

Updated:: 2023/08/28 12:05 PM

Resolved:: 2023/08/28 12:05 PM

Details

Description

Description of problem:

How reproducible:

Steps to Reproduce:

Actual results:

Expected results:

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates