Bug 1570539
Summary: | Fail to upgrade ocp with htpasswd auth at task [openshift_control_plane : verify API server] | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | liujia <jiajliu> |
Component: | Cluster Version Operator | Assignee: | Michael Gugino <mgugino> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | liujia <jiajliu> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 3.10.0 | CC: | aos-bugs, jiajliu, jkaur, jokerman, mmccomas, sdodson, vlaad, wmeng |
Target Milestone: | --- | Keywords: | Reopened |
Target Release: | 3.10.z | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2018-10-08 14:00:53 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
liujia
2018-04-23 07:25:34 UTC
We're going to have to enforce that the htpasswd file exist in /etc/origin/master *** This bug has been marked as a duplicate of bug 1565447 *** Re-open the bug because upgrade against ocp with htpasswd auth still failed at task [Run variable sanity checks] ********************************************** task path: /usr/share/ansible/openshift-ansible/playbooks/init/sanity_checks.yml:13 Thursday 07 June 2018 10:14:16 +0000 (0:00:00.044) 0:02:55.937 ********* fatal: [x]: FAILED! => {"failed": true, "msg": "last_checked_host: qe-jliu-r39p-master-etcd-nfs-1.0607-wxn.qe.rhcloud.com, last_checked_var: openshift_master_manage_htpasswd;openshift_master_identity_providers contains a provider of kind==HTPasswdPasswordIdentityProvider and filename is set. Please migrate your htpasswd files to /etc/origin/master/htpasswd and update your existing master configs, and remove the filename keybefore proceeding."} But for htpasswd, original resolution should be that htpasswd file was moved to mounted path /etc/origin/master/ by installer during upgrade, which was fixed in https://bugzilla.redhat.com/show_bug.cgi?id=1570935#c7(Scenario2). Seems this check should skip oauthConfig.identityProviders? Re-open to have a confirm about above issue. liujia, Can you please provide your inventory file? (In reply to Scott Dodson from comment #3) > liujia, > > Can you please provide your inventory file? In attachment now. Hi Scott Could u give a confirmed result about the question in comment2 before code freeze? Because the default action for htpasswd seems not clear according to the two bugs. *** Bug 1607039 has been marked as a duplicate of this bug. *** PR Created in 3.10 (only applicable branch) https://github.com/openshift/openshift-ansible/pull/9444 Should be in openshift-ansible-3.10.28-1 Verified on openshift-ansible-3.10.45-1.git.0.5aef941.el7.noarch Before upgrade: [root@ip-172-18-5-98 master]# pwd /etc/origin/master [root@ip-172-18-5-98 master]# ls -la|grep htp [root@ip-172-18-5-98 master]# cat /etc/origin/master/master-config.yaml|grep htpasswd name: htpasswd_auth file: /etc/origin/htpasswd Upgrade succeed. [root@ip-172-18-5-98 master]# pwd /etc/origin/master [root@ip-172-18-5-98 master]# ls -la|grep htp -rw-------. 1 root root 14 Sep 12 04:45 htpasswd [root@ip-172-18-5-98 master]# cat /etc/origin/master/master-config.yaml|grep htpasswd name: htpasswd_auth file: /etc/origin/master/htpasswd |