Bug 1744599
Summary: | Authentication operator persistently rolls out oauth-openshift pods | |||
---|---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Robert Sandu <rsandu> | |
Component: | apiserver-auth | Assignee: | Mo <mkhan> | |
Status: | CLOSED ERRATA | QA Contact: | scheng | |
Severity: | medium | Docs Contact: | ||
Priority: | medium | |||
Version: | 4.1.0 | CC: | aos-bugs, mfojtik, mkhan, nagrawal, rcarrata | |
Target Milestone: | --- | Keywords: | OSE41z_next | |
Target Release: | 4.1.z | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | If docs needed, set a value | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 1747480 (view as bug list) | Environment: | ||
Last Closed: | 2019-09-20 12:29:24 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | 1747480 | |||
Bug Blocks: |
Description
Robert Sandu
2019-08-22 13:58:13 UTC
The logs do not contain events / pod logs from the operator's namespace. There also seems to have been some attempt to disable the authn operator (it was applied to the wrong resource though see "oc get authentication.config vs oc get authentication.operator - the latter is what can be used to pause the operator). Please make sure that the operator is running, and then directly collect pod logs, events, pods, deployments, etc from the openshift-authentication-operator namespace. The following command will cause the operator to emit an enormous amount of logs and will make it easier to understand what the issue is: oc patch authentication.operator cluster --type=merge -p "{\"spec\":{\"operatorLogLevel\": \"TraceAll\"}}" This can be disabled by: oc patch authentication.operator cluster --type=merge -p "{\"spec\":{\"operatorLogLevel\": \"\"}}" Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2019:2768 |