Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-37977

Console doesn't update serving certs at runtime

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • 4.17.0
    • Management Console
    • None
    • Low
    • None
    • False
    • Hide

      None

      Show
      None
    • Hide
      Prior to this fix, the console server did not update serving certs at runtime and new pods would need to be rolled out in order to parse new certs at startup. Now, the console server updates serving certs as soon as they change, and a new rollout is not required.
      Show
      Prior to this fix, the console server did not update serving certs at runtime and new pods would need to be rolled out in order to parse new certs at startup. Now, the console server updates serving certs as soon as they change, and a new rollout is not required.
    • Bug Fix
    • In Progress

      Description of problem:

          If certs are rotated or otherwise changed, the console will not automatically roll out with new serving certs or update them at runtime, which causes the console to fail.

      Version-Release number of selected component (if applicable):

          4.17.0

      How reproducible:

          always

      Steps to Reproduce:

          1. oc delete secret/signing-key -n openshift-service-ca
    2. Wait for certs to be regenerated (sometimes 20 to 30 minutes)
    3. Try to visit the console

      Actual results:

          Console fails to load

      Expected results:

          Console should work normally

      Additional info:

              rh-ee-jonjacks Jon Jackson
              rh-ee-jonjacks Jon Jackson
              YaDan Pei YaDan Pei
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: