Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-2206

3scale keeps trying to delete clients in RH-SSO that don't exist anymore

    XMLWordPrintable

Details

    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Engineering
    • 3scale 2020-01-13, 3scale 2020-01-27, 3scale 2020-02-03, 3scale 2020-02-17, 3scale 2020-03-09, 3scale 2020-03-23

    Description

      The configuration with RH-SSO on a service with OpenID Connect is configured correctly, and when an application is created in 3scale, it gets created in RH-SSO.

      However, after deleting the whole service (and its applications), the following errors are observed in the RH-SSO logs:

      ~~~
      11:38:55,725 WARN [org.keycloak.events] (default task-2) type=CLIENT_DELETE_ERROR, realmId=some-realm-name, clientId=some-client-id, userId=null, ipAddress=10.10.10.10, error=client_not_found
      ~~~

      It looks like the client has already been deleted from RH-SSO, but there is still some kind of event "stuck" in SaaS that keeps trying to delete the same client again.

      For each affected client, the above logs appear multiple times in a row, then stop for a while, then appear again.

      Dev notes

      When Zync receives an error from Keycloak and the message is type=CLIENT_DELETE_ERROR it should mark the job as success.
      I (Hery) think right now the job is marked as failed thus retrying after a backoff delay

      So the error is re-raised in Zync, making the job to be rescheduled

      https://github.com/3scale/zync/blob/5317e7c3938fd16a88d3dc2feb4c35d1c7f0d0e4/app/jobs/process_integration_entry_job.rb#L34-L43

      Attachments

        Issue Links

          is related to

          Feature Request - Feature requests from customers and/or users THREESCALE-1286 Mapping user attributes from Red Hat Single Sign On to 3scale "USER" custom fields.

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. THREESCALE-7425 SSO Integrations Realm or Site URL validation is not working

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. THREESCALE-7113 3scale SSO integrations allowing multiple integrations of the same Id Provider

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Closed

          Activity

            People

              Unassigned Unassigned
              rhn-support-dmayorov Daria Mayorova
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: