Uploaded image for project: 'OpenShift Logging'
  1. OpenShift Logging
  2. LOG-8139

Support for OpenShift Loki Operator and OCP BYO / External Authentication (OAuth Removal Handling)

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • Logging 6.3.1, Logging 6.2.6, Logging 6.4.0
    • Log Storage
    • Future Sustainability
    • False
    • Hide

      None

      Show
      None
    • False
    • NEW
    • NEW
    • Moderate

      After converting an OpenShift cluster to use BYO / External Authentication, the native OpenShift OAuth server and its related OAuth endpoints are no longer present.

      When Loki (via the OpenShift Loki Operator) attempts to auto-discover OpenShift OAuth endpoints, it encounters errors because those endpoints no longer exist in an external-authenticated environment.

      This results in repeated errors such as:

      level=error name=lokistack-gateway ts=2025-11-08T00:42:05.931886411Z caller=openshift.go:149 tenant=network msg="unable to auto discover OpenShift OAuth endpoints: got 404 404 page not found"

      Expected Result

      • Loki should support external identity providers without requiring OpenShift OAuth.
      • OAuth autodiscovery should be disabled or handled gracefully in external-auth environments.
      • No repeated error logs should occur when OAuth is intentionally absent.

              Unassigned Unassigned
              rhn-support-amanverm Aman Dev Verma
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: