Fix k8s 1.27 runtime configuration issue
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
High
|
Saba Touheed Mujawar |
Bug Description
Brief Description
-----------------
OIDC service parameters are not configured in kube-apiserver manifest. Because of this, Kubernetes authentication through OIDC tokens will not work.
Severity
--------
Critical.
Steps to Reproduce
------------------
Apply the commands below and wait 5 minutes for the puppet apply to be completed.
OAM_IP="1.2.3.4"
ISSUER_URL="https:/
source /etc/platform/
system service-
system service-
system service-
system service-
system service-
Expected Behavior
------------------
The following lines should be present in "/etc/kubernete
- --oidc-
- --oidc-
- --oidc-issuer-url=https:/
- --oidc-
Actual Behavior
----------------
The file "/etc/kubernete
Reproducibility
---------------
100% reproducible.
System Configuration
-------
Any. Tested on AIO-SX.
Changed in starlingx: | |
assignee: | nobody → Saba Touheed Mujawar (smujawar) |
Changed in starlingx: | |
importance: | Undecided → Medium |
tags: | added: stx.9.0 stx.containers |
Changed in starlingx: | |
importance: | Medium → High |
Fix proposed to branch: master /review. opendev. org/c/starlingx /stx-puppet/ +/909997
Review: https:/