Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-15840

S3 Bucket URLs and Identity Provider URLs are mismatched for us-gov-west-1 region

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Major Major
    • None
    • 4.13
    • Cloud Credential Operator
    • None
    • No
    • Rejected
    • False
    • Hide

      None

      Show
      None

      Copied into Jira from https://github.com/openshift/cloud-credential-operator/issues/557.

      Description of problem:

      When I was running through this tutorial: https://docs.openshift.com/container-platform/4.12/authentication/managing_cloud_provider_credentials/cco-mode-sts.html#cco-ccoctl-configuring_cco-mode-sts

I encountered a bug where the Identity Provider was pointing to the wrong S3 Bucket URL for the us-gov-west-1 region.

The S3 Bucket URL in us-gov-west-1 region follows this scheme with s3-: https://[name]-oidc.s3-us-gov-west-1.amazonaws.com whereas, the Identity Provider provisioned by the ccoctl tool used this hostname scheme with s3.: https://[name]-oidc.s3.us-gov-west-1.amazonaws.com

      Version-Release number of selected component (if applicable):

      4.13

      How reproducible:

      100%

      Steps to Reproduce:

      1. Use ccoctl to provision AWS infrastructure via `ccoctl aws create-all` in the us-gov-west-1 region.
2. Observe incorrect URL configuration for the OICD issuer S3 bucket URL in the AWS identity provider and other places such as with the cluster authentication object.

      Actual results:

      S3 bucket URL is incorrect in multiple places for the us-gov-west-1 region.

      Expected results:

      S3 bucket URL is correct.

      Additional info:

       

            Unassigned Unassigned
            abutcher@redhat.com Andrew Butcher
            Jianping Shu Jianping Shu
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: