Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Major
Fix Version/s: 4.15.z
Affects Version/s: 4.14.z, 4.15.z, 4.16.z
Component/s: HyperShift
Labels:

Severity:
Important
Regression:
None
Sprint:
Hypershift Sprint 261, Hypershift Sprint 262
sprint_count:
2
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Text:

Hide
Previously, an invalid or unreachable identity provider (IDP) blocked updates to hosted control planes. With this release, the ValidIDPConfiguration condition in the HostedCluster object now reports any IDP errors and these errors do not block hosted control planes update.
====

* Previously, an invalid or unreachable identity provider (IDP) blocked updates to {hcp}. With this release, the `ValidIDPConfiguration` condition in the `HostedCluster` object now reports any IDP errors so that these errors do not block updates to {hcp}. (link:https://issues.redhat.com/browse/OCPBUGS-43840[*~~OCPBUGS-43840~~*])
----
Fixes and issue where an invalid or unreachable IDP configuration can block updates to the Hosted Control Plane. IDP configuration errors are now reported on a new ValidIDPConfiguration condition on the HostedCluster.

Show
Previously, an invalid or unreachable identity provider (IDP) blocked updates to hosted control planes. With this release, the ValidIDPConfiguration condition in the HostedCluster object now reports any IDP errors and these errors do not block hosted control planes update. ==== * Previously, an invalid or unreachable identity provider (IDP) blocked updates to {hcp}. With this release, the `ValidIDPConfiguration` condition in the `HostedCluster` object now reports any IDP errors so that these errors do not block updates to {hcp}. (link: https://issues.redhat.com/browse/OCPBUGS-43840 [* OCPBUGS-43840 *]) ---- Fixes and issue where an invalid or unreachable IDP configuration can block updates to the Hosted Control Plane. IDP configuration errors are now reported on a new ValidIDPConfiguration condition on the HostedCluster.
Release Note Type:
Bug Fix
Release Note Status:
Done
Target Version:

4.15.z
Target Backport Versions:

4.15.z, 4.17.z, 4.16.z

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

This is a clone of issue ~~OCPBUGS-43840~~. The following is the description of the original issue:
—
This is a clone of issue ~~OCPBUGS-43746~~. The following is the description of the original issue:
—
This is a clone of issue OCPBUGS-38132. The following is the description of the original issue:
—
The CPO reconciliation aborts when the OIDC/LDAP IDP validation check fails and this result in failure to reconcile for any components that are reconciled after that point in the code.

This failure should not be fatal to the CPO reconcile and should likely be reported as a condition on the HC.

xref

Customer incident
https://issues.redhat.com/browse/OCPBUGS-38071

RFE for bypassing the check
https://issues.redhat.com/browse/RFE-5638

PR to proxy the IDP check through the data plane network
https://github.com/openshift/hypershift/pull/4273

clones

OCPBUGS-43840 OIDC IDP validation check should not be fatal to CPO reconcilation

Closed

is blocked by

OCPBUGS-43840 OIDC IDP validation check should not be fatal to CPO reconcilation

Closed

links to

openshift/hypershift#5037: OCPBUGS-44201: add ValidIDPConfiguration condition to report IDP config issues

RHBA-2024:8991 OpenShift Container Platform 4.15.z bug fix update

Assignee:: Alberto Garcia Lamela

Reporter:: OpenShift Prow Bot

QA Contact:: Jie Zhao

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/11/04 6:20 PM

Updated:: 2024/11/13 7:36 PM

Resolved:: 2024/11/13 6:35 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates