Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-38131

discoverOpenIDURLs and checkOIDCPasswordGrantFlow fail if endpoints are private to the data plane

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Critical Critical
    • None
    • 4.17.0
    • HyperShift
    • Moderate
    • None
    • Hypershift Sprint 257, Hypershift Sprint 258
    • 2
    • Rejected
    • False
    • Hide

      None

      Show
      None
    • Release Note Not Required
    • Done

      This is a clone of issue OCPBUGS-37753. The following is the description of the original issue:

      discoverOpenIDURLs and checkOIDCPasswordGrantFlow fail if endpoints are private to the data plane.

      This enabled the oauth server traffic to flow through the dataplane to enable reaching private endpoints e.g ldap https://issues.redhat.com/browse/HOSTEDCP-421

      This enabled fallback to the management cluster network so for public endpoints we are not blocking on having data plane, e.g. github https://issues.redhat.com/browse/OCPBUGS-8073

      This issue is to enable the CPO oidc checks to flow through the data plane and fallback to the management side to satisfy both cases above.

      This woudl cover https://issues.redhat.com/browse/RFE-5638

            sjenning Seth Jennings
            openshift-crt-jira-prow OpenShift Prow Bot
            He Liu He Liu
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated:
              Resolved: