Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-25897

Failed to create secret on HyperShift Hosted Cluster with short-lived token was enabled by CCO.

    XMLWordPrintable

Details

    • No
    • Proposed
    • False
    • Hide

      None

      Show
      None
    • N/A
    • Release Note Not Required

    Description

      Description of problem:

      • Hosted cluster credentialsMode mode is not manual and cannot create secrets.
      • Now the Control Plan credentialsMode is the same as Management Cluster, but for this feature, it should be manual mode on Hosted Cluster no matter what the credentialsMode of Management Cluster is.

      Version-Release number of selected component (if applicable):

          4.16

      How reproducible:

          Always

      Steps to Reproduce:

         
 1.Creates CredentialsRequest including the spec.providerSpec.stsIAMRoleARN string. 
   
 2.Cloud Credential Operator could not populate Secret based on CredentialsRequest.   

$ oc get secret -A | grep test-mihuang
#Secret not found.  

$ oc get CredentialsRequest -n openshift-cloud-credential-operator
NAME                                                  AGE
...
test-mihuang                                               44s
    3.

      Actual results:

          Secret not create successfully.

      Expected results:

          Successfully created the secret on the hosted cluster.

      Additional info:

      Attachments

        Issue Links

          blocks

          Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. CCO-386 HyperShift Integration

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-27103 Failed to create secret on HyperShift Hosted Cluster with short-lived token was enabled by CCO.

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. CCO-473 post-merge testing: HyperShift Integration

          • Undefined - Priority not specified.
          • Closed

          Task - Represents a small unit of work that is not end-user facing. CCO-514 New function testing.

          • Undefined - Priority not specified.
          • Closed

          Feature - Capability or a well-defined set of functionality that delivers business value. Features can include additions or changes to existing functionality. Features can easily span multiple teams, and potentially multiple releases. OCPSTRAT-110 Hypershift-enablement for short-lived token authentication flows with OLM-managed operators with CCO

          • Critical - To be worked on immediately following BLOCKER issues.
          • In Progress
          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-27103 Failed to create secret on HyperShift Hosted Cluster with short-lived token was enabled by CCO.

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed
          relates to

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. CCO-388 Add CCO to HyperShift Management plane

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed
          links to

          GitHub openshift/hypershift#3375: OCPBUGS-25897: hcco: use manual mode for CCO

          Web Link RHEA-2024:0041 OpenShift Container Platform 4.16.z bug fix update

          Activity

            People

              skuznets@redhat.com Steve Kuznetsov
              mihuang@redhat.com Mingxia Huang
              Mingxia Huang Mingxia Huang
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated: